Re: [squid-users] Fwd: Encrypted browser-squid connection
On 11/12/18 12:52 AM, Alex Crow wrote: > > On 12/11/2018 02:45, supraja sridhar wrote: >> Hi, >> When I try out the encrypted browser-squid connection, no URL loads. I >> get the following error message in the squid access log. >> >> 1541989360.999 0 XXX.XX.XXX.XX NONE/000 0 NONE >> error:transaction-end-before-headers - HIER_NONE/- - >> >> >> I have Firefox-59.0.1 running on Ubuntu loaded with the following pac >> file >> >> function FindProxyForURL(url, host) >> >> { >> >> return "HTTPS XXX.XX.XXX.XXX:3129" >> >> } > Should be > > return "PROXY XXX.XXX.XXX.XXX:3129;" Two problems with this suggestion: * Major: "PROXY" is the wrong keyword for "Encrypted browser-squid connection". OP's "HTTPS" was as correct as the email subject. See https://developer.mozilla.org/en-US/docs/Web/HTTP/Proxy_servers_and_tunneling/Proxy_Auto-Configuration_(PAC)_file#Return_value_format * Minor: Semicolons inside FindProxyForURL() return values are used to delimit blocks. In this case, there is only one block so I would not add a semicolon before the closing quote. Adding a semicolon at the end of the return statement (i.e. _after_ the closing quote) may be a good idea even though it is not required in this specific context IIRC. Alex. ___ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.org/listinfo/squid-users
Re: [squid-users] Fwd: Encrypted browser-squid connection
On 12/11/18 3:45 PM, supraja sridhar wrote: > > Can someone please help me debug this further? > First thing to do is convert your config file to plain-text (ASCII). Squid does not use RTF format config. Second your definition for "all" ACL is incorrect. Remove it and use the built-in one. Also remove that "http_access allow all" and adjust the localnet ACL to match your actual LAN range(s) you expect clients to be using. Both IPv4 and IPv6. Then use "squid -k parse" to verify Squid is able to use your updated config and a full restart Squid to make extra-sure it is only using that config. The next debugging to do is check the actual protocol with a wireshark full-packet trace to see what the Browser is actually sending to the proxy. Amos ___ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.org/listinfo/squid-users
[squid-users] Fwd: Encrypted browser-squid connection
Hi, When I try out the encrypted browser-squid connection, no URL loads. I get the following error message in the squid access log. 1541989360.999 0 XXX.XX.XXX.XX NONE/000 0 NONE > error:transaction-end-before-headers - HIER_NONE/- - > I have Firefox-59.0.1 running on Ubuntu loaded with the following pac file > function FindProxyForURL(url, host) > > { > > return "HTTPS XXX.XX.XXX.XXX:3129" > > } > > Squid-version: 4.4 and it runs on Ubuntu 16.04.5 OS. Can someone please help me debug this further? Thanks, Supraja -- Regards, S.SUPRAJA MIT -- Regards, S.SUPRAJA MIT squid.conf.rtf Description: RTF file ___ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.org/listinfo/squid-users