i'm trying to setup transparent https proxy, but it doesn't work.
i don't even know what i do wrong as there are no errors logged anywhere...
any help and hints apprechiated.
network dump:
# ngrep port 3129 -d eth1
#####
T x.x.x.x:50281 -> y.y.y.y:3129 [AP]
CONNECT sitecheck2.opera.com:443 HTTP/1.0..User-Agent: Opera/9.61 (X11; Linux
x86_64; U; PLD/2.0 (Ac); en) Presto/2.1.1..Host: sitecheck2.opera.com:44
3....
###
and if i just issue command with telnet. the connection is dropped right after
first line:
$ telnet y.y.y.y 3129
Trying y.y.y.y.3129...
Connected to proxy.
Escape character is '^]'.
CONNECT sitecheck2.opera.com:443 HTTP/1.0
Connection closed by foreign host.
$
my config:
# Default pound.cfg
# vim:ft=sh
#
# Pound listens on port 80 for HTTP and port 443 for HTTPS
# and distributes requests to 2 backends running on localhost.
# see pound(8) for configuration directives.
# You can enable/disable backends with poundctl(8).
#
User "pound"
Group "pound"
Control "/var/run/pound/pctl.sock"
# Log errors to this file
ErrorLog /var/log/pound/pound.log
LogFile /var/log/pound/access.log
LogLevel 5
Alive 1
ListenHTTPS
Address y.y.y.y
Port 3129
Cert "/etc/pound/server.pem"
Service
BackEnd
Address z.z.z.z
Port 80
End
# Serving maintenance page
Emergency
Address z.z.z.z
Port 80
End
End
End
server.pem permissions:
# ls -l /etc/pound/server.pem
-rw-r----- 1 pound pound 3893 2009-01-14 20:58 /etc/pound/server.pem
--
glen
--
To unsubscribe send an email with subject unsubscribe to [email protected].
Please contact [email protected] for questions.
