I do not think this solution is correct.
The SSL_Ports ACL should already contain "443". So the traffic was
**not** being blocked by this line:
"deny CONNECT !SSL_Ports"
AFAICS the lack of URL-path details on the CONNECT request was failing
to match the urlpath_regex ACL.
FYI;
While mos
Solution:
It is the error message 'TCP_DENIED/200 0 CONNECT' wich showed me the way.
Directive is too restrictive:
http_access deny CONNECT !SSL_ports
It works now with:
http_access allow CONNECT safe_ports
where safe ports are:
80, 443, 1025-65535 (maybe too large)
