On 14/02/19 1:10 am, leomessi983 wrote: > I use this configuration to solve my problem. > Whit this configuration at first step I use bump action for sites that i > want to block and show ACCESS_DENIED page then splice all other requests!! > My problem in this config is when my clients want to see block pages > they first see SSL warning in their browser then after click on > exception they will see ACCESS_DENIED page!!
Welcome to HTTPS - where clients actually tell you if a mystery third-party is touching your web traffic. You know, like maybe a proxy answering on a connection that supposedly went directly to a web server. There is only one way to avoid these popups and that is to do as all our documentation should have made you aware already. Install your custom / self-signed CA into every CA storage location the clients are using. > .......... > > acl blk ssl::server_name "/var/blkfiles/url.txt" > > http_access deny blk > > acl step1 at_step SslBump1 > ssl_bump peek step1 > ssl_bump bump blk > ssl_bump splice all > > > > On Wednesday, February 13, 2019, 9:55:06 AM GMT+3:30, > squid-users-request wrote: > > > Send squid-users mailing list submissions to Please do set your subscription to deliver posts as individual emails for the time when you are discussion things. Replying to the specific message your response is about really helps keep threads properly linked together for those of us using proper email clients and for the systems presenting our messages in web forum formats. Please do not quote the digest of an entire day/week/months postings in your reply emails. Amos _______________________________________________ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.org/listinfo/squid-users
