managed to get SSL
interception running with 3.1 and 3.2. I'm totally confused... :-(
Thanks for your help so far!
To: squid-users@squid-cache.org
Date: Thu, 1 Nov 2012 11:59:46 +1300
From: squ...@treenet.co.nz
Subject: Re: [squid-users] Squid and SSL
On 2/11/2012 12:17 a.m., Heinrich Hirtzel wrote:
You are missing the intercept flag on https_port. That is what tells
Squid how to interpret the URL and TCP layer differences in the port 80
and 443 syntax traffic.
I've already tried that (with 3.1.20, since 3.2.3 isn't working here at all), but
On 10/31/2012 5:33 PM, Heinrich Hirtzel wrote:
Hello
For a school project I'm trying to intercept SSL connections by using Squid (client
- squid (transparent) - server).
I'm running Squid 3.1.20 on Ubuntu server 12.10 (64 bit) using the following
configuration:
: Re: [squid-users] Squid and SSL interception (ssl-bump)
On 10/31/2012 5:33 PM, Heinrich Hirtzel wrote:
Hello
For a school project I'm trying to intercept SSL connections by using Squid
(client - squid (transparent) - server).
I'm running Squid 3.1.20 on Ubuntu server 12.10 (64 bit) using
: RE: [squid-users] Squid and SSL interception (ssl-bump)
Hi Eliezer
what iptables rules have you used?
also you better use squid 3.2 for ssl-bump.
iptables -A PREROUTING -t nat -i eth1 -p tcp --dport 81 -j REDIRECT --to-port
3128
iptables -A PREROUTING -t nat -i eth1 -p tcp --dport 443
--
On Wed 31 Oct, 2012 9:03 PM IST Heinrich Hirtzel wrote:
http_port 10.0.1.1.:3128 intercept
https_port 10.0.1.1.:443 ssl-bump cert=/user/local/squid3/ssl_cert/myCA.pm
you have forgotten intercept on https line
Amm
-users] Squid and SSL interception (ssl-bump)
--
On Wed 31 Oct, 2012 9:03 PM IST Heinrich Hirtzel wrote:
http_port 10.0.1.1.:3128 intercept
https_port 10.0.1.1.:443 ssl-bump cert=/user/local/squid3/ssl_cert/myCA.pm
you have forgotten intercept on https
On 01.11.2012 04:33, Heinrich Hirtzel wrote:
Hello
For a school project I'm trying to intercept SSL connections by using
Squid (client - squid (transparent) - server).
I'm running Squid 3.1.20 on Ubuntu server 12.10 (64 bit) using the
following configuration:
On 10/31/2012 6:43 PM, Heinrich Hirtzel wrote:
I've just updated to the most recent squid version (compiled with --enable-ssl
*and* --enable-ssl-crtd):
./squid -v
Squid Cache: Version 3.2.3-20121031-r11695
what are all the compilation options from -v (curios)
try the latest stable at:
On 01.11.2012 04:49, Heinrich Hirtzel wrote:
Hi Eliezer
what iptables rules have you used?
also you better use squid 3.2 for ssl-bump.
iptables -A PREROUTING -t nat -i eth1 -p tcp --dport 81 -j REDIRECT
--to-port 3128
iptables -A PREROUTING -t nat -i eth1 -p tcp --dport 443 -j REDIRECT
Date: Thu, 1 Nov 2012 00:59:15 +0800
From: ammdispose-squid
--
On Wed 31 Oct, 2012 9:03 PM IST Heinrich Hirtzel wrote:
http_port 10.0.1.1.:3128 intercept
https_port 10.0.1.1.:443 ssl-bump
11 matches
Mail list logo