Hello,
icmp_sock = socket(PF_INET, SOCK_RAW, IPPROTO_ICMP);
The above command works fine in squid. But if I run the same command
in my eCap adapter I get an error.
EPERM (Operation not permitted).
Can you please help? Is this related the way dll are handled in linux.
Thanks,
Jatin
to open socket in my eCap adapter.
Thanks,
Jatin
On Tue, May 6, 2014 at 9:22 PM, Amos Jeffries squ...@treenet.co.nz wrote:
On 6/05/2014 11:16 p.m., Jatin Bhasin wrote:
Hello,
icmp_sock = socket(PF_INET, SOCK_RAW, IPPROTO_ICMP);
The above command works fine in squid. But if I run the same
Thanks I was able to solve this issue by setting up effective user permissions.
On Tue, May 6, 2014 at 9:22 PM, Amos Jeffries squ...@treenet.co.nz wrote:
On 6/05/2014 11:16 p.m., Jatin Bhasin wrote:
Hello,
icmp_sock = socket(PF_INET, SOCK_RAW, IPPROTO_ICMP);
The above command works fine
Hello,
We have a test set up as below:
Client SQUID(PROXY1) PROXY2 - SERVER
In the above set up Client browser is configured to point to PROXY2.
So client sends the CONNECT request to PROXY2.
PROXY1 which is running SQUID is transparently detecting this CONNECTION.
The
cannot change
configuration on PROXY2 to bump the traffic neither I can remove it
from the netwrok setup.
So is this all possible?
Thanks,
Jatin
On Sat, Jun 7, 2014 at 11:24 PM, Antony Stone
antony.st...@squid.open.source.it wrote:
On Saturday 07 June 2014 at 14:16, Jatin Bhasin wrote:
Hello
but that's encrypted and I want to
see decrypted traffic to look for virus in them.
Thanks,
Jatin
On Sun, Jun 8, 2014 at 1:46 AM, Antony Stone
antony.st...@squid.open.source.it wrote:
On Saturday 07 June 2014 at 14:33, Jatin Bhasin wrote:
Hello,
1) PROXY2 is not configured to bump
be looking towards changing squid
code to handle this scenario?
Thanks,
Jatin
On Sun, Jun 8, 2014 at 12:20 PM, Amos Jeffries squ...@treenet.co.nz wrote:
On 8/06/2014 10:03 a.m., Jatin Bhasin wrote:
Hello,
1) I have to bump the SSL request because I want to pass the decrypted
traffic
Hello,
As I understand currently squid can send client IP address up to the eCap
adapter using squid configuration directive *adaptation_send_client_ip.*
I needed more information in my eCap adapter so I changed the squid source
code to be able to send *Client Port, Destination Address and
that information up to the eCap adapter.
Thanks,
Jatin
On Thu, Jul 10, 2014 at 8:46 PM, Antony Stone
antony.st...@squid.open.source.it wrote:
On Thursday 10 July 2014 at 12:34:37, Jatin Bhasin wrote:
Hello,
As I understand currently squid can send client IP address up to the eCap
adapter using
Hello All,
I am using SSL Bump in transparent mode in squid 3.3.12. And when I
browse to https://weather.yahoo.com then it goes in a redirect loop.
I am using Chrome browser and I get a message at the end saying 'This
webpage has a redirect loop'.
On checking the developer console I found that
Hi,
Thanks, for that. It solved for me as well. But does anyone why this loop
happens and how does these squid directives resolve the issue?
Thanks,
Jain
On 20 Aug 2014, at 16:16, Amm ammdispose-sq...@yahoo.com wrote:
On 08/20/2014 10:52 AM, Jatin Bhasin wrote:
And when I browse
://docs.diladele.com/faq/squid.html#why-i-see-cannot-connect-to-site-using-https-browser-message-instead-of-usual-site-is-blocked
Raf
From: Jatin Bhasin jbhasi...@gmail.com
Sent: Thursday, August 21, 2014 12:47 PM
To: squid-users@squid-cache.org
.
Is it possible?
acl no_ssl_interception dstdomain .888.com
ssl_bump none no_ssl_interception
ssl_bump client-first all
Thanks,
Jatin
On Fri, Aug 22, 2014 at 9:59 AM, Jatin Bhasin jbhasi...@gmail.com wrote:
Hello,
Yes, that is the same scenario what I have been experiencing but when
I call function
Hi Alex,
That will be awesome if that works. I will try this option.
Thanks,
Jatin
On 23 Aug 2014, at 10:24, Alex Rousskov rouss...@measurement-factory.com
wrote:
On 08/21/2014 07:06 PM, Jatin Bhasin wrote:
So, can somebody suggest me if there is a way to pass a flag to squid
from
it. (I think it may require a code
change in XactionRep.cc but I am not sure.) Please suggest.
Thanks,
Jatin
On Sat, Oct 11, 2014 at 2:03 PM, Jatin Bhasin jbhasi...@gmail.com wrote:
Hi Alex,
I changed my ACL's a bit to see annotations in access.log file. My web
browser is point to squid port
Hello,
I am using squid 3.4.9 and the Dropbox client does not work with
SSLBump feature of squid. Dropbox client gives a message that it
cannot make a secure connection. Does anyone know fix or workaround or
this issue?
Thanks,
Jatin
___
squid-users
Hello,
I am using squid 3.4.9 with SSL Bump feature. I am using the following
https_port directive.
https_port 8090 tproxy ssl-bump generate-host-certificates=on
dynamic_cert_mem_cache_size=16MB cert=Certficate key=Key
I am unable to find out where all the certificates are being stored. I
was
FAKE CONNECT until we splice at step 2. Do
you know that why squid does not generate FAKE CONNECT request for
bump and peek actions at step2 ?
Thanks,
Jatin
On Tue, Oct 27, 2015 at 4:20 AM, Alex Rousskov
<rouss...@measurement-factory.com> wrote:
> On 10/26/2015 06:34 AM, Jatin Bhasin wrot
On 27 Oct 2015 1:52 am, "Amos Jeffries" <squ...@treenet.co.nz> wrote:
> On 27/10/2015 1:34 a.m., Jatin Bhasin wrote:
> > Hello,
> >
> > I am running squid 3.5.10 for bumping transparent SSL connections To
> > achieve this I am using following squid
and may causes issues in some cases
I don't know about?
Thanks,
Jatin
On Thu., 24 Oct. 2019, 07:55 Alex Rousskov, <
rouss...@measurement-factory.com> wrote:
> On 10/23/19 3:37 PM, Jatin Bhasin wrote:
>
> > This question is related to ssl decryption and ecap adaptation call.
> >
Hi All,
This question is related to ssl decryption and ecap adaptation call.
When the ssl connection starts then before it even extracts sni squid sends
fakeConnect which comes to ecap as well.
I am using peek in step 1 and after fakeConnect squid extracts the sni, but
at this point squid does
all to ecap adapter and this time we have sni as well?
I needed this functionality as I want to make the decision using sni
whether to bump the connection or not.
Thanks,
Jatin Bhasin
___
squid-users mailing list
squid-users@lists.squid-cache.org
h
22 matches
Mail list logo