Am I right in saying that RST it's a design intent of squid to end
connections quickly? I've started digging into the squid code and see
SO_LINGER and timeout set to 0, which means that it's done on purpose
not to hang on connections in TIME_WAIT state?
Maciek
wt., 28 lut 2023 o 08:12 Maciej Leks
On 2/28/23 08:35, Maciej Leks wrote:
Am I right in saying that RST it's a design intent of squid to end
connections quickly? I've started digging into the squid code and see
SO_LINGER and timeout set to 0, which means that it's done on purpose
not to hang on connections in TIME_WAIT state?
Does
Hi Amos and Gabriel,
Thanks for your response. It was very helpful.
Best,
Lubos
On Mon, Feb 27, 2023 at 3:35 PM Service MV wrote:
> Hi, I think that is not necessary the service but yes the packages. In the
> past I setup a squid with kerberos support very well and for compilation I
> installe
>Does child Squid bump the TLS client connection, tunnel it, or
>terminates it (i.e. the child works as a reverse proxy)?
* client connects to child Squid's http_port without "ssl-bump".
* client sends a plain text CONNECT request to child Squid.
* child Squid connects to parent using cache_peer w
On 2/28/23 13:07, Maciej Leks wrote:
Does child Squid bump the TLS client connection, tunnel it, or
terminates it (i.e. the child works as a reverse proxy)?
* client connects to child Squid's http_port without "ssl-bump".
* client sends a plain text CONNECT request to child Squid.
* child Squi
wt., 28 lut 2023 o 20:06 Alex Rousskov
napisał(a):
>
> On 2/28/23 13:07, Maciej Leks wrote:
> >>Does child Squid bump the TLS client connection, tunnel it, or
> >>terminates it (i.e. the child works as a reverse proxy)?
>
> > * client connects to child Squid's http_port without "ssl-bump".
> > * c
On 2/28/23 15:34, Maciej Leks wrote:
wt., 28 lut 2023 o 20:06 Alex Rousskov
napisał(a):
On 2/28/23 13:07, Maciej Leks wrote:
Does child Squid bump the TLS client connection, tunnel it, or
terminates it (i.e. the child works as a reverse proxy)?
* client connects to child Squid's http_port
wt., 28 lut 2023 o 22:13 Alex Rousskov
napisał(a):
>
> On 2/28/23 15:34, Maciej Leks wrote:
> > wt., 28 lut 2023 o 20:06 Alex Rousskov
> > napisał(a):
> >>
> >> On 2/28/23 13:07, Maciej Leks wrote:
> Does child Squid bump the TLS client connection, tunnel it, or
> terminates it (i.e. th
On 2/28/23 17:15, Maciej Leks wrote:
What are those TLS alerts?
Code 21 - decryption_failed_RESERVED(21).
Are you sure that 21 is actually the alert description ID and _not_ the
TLS message content type (all alert messages have TLS content type 21)?
TLSv1.2 Record Layer: Encrypted Alert
