On 10/11/2011 6:00 p.m., Anandha V wrote:
Hello all,
In the squid i can find the following tags under SSL,
sslproxy_client_certificate, sslproxy_client_key, sslproxy_cafile
In the reverse proxy configuration can we assign certificates using
above tags instead of using the following in sslcert, sslkey,
sslcafile, in cache_peer configuration.
The global sslproxy_* directives control what Squid uses on DIRECT
traffic when it needs to handle all the SSL/TLS details of a https:// URL.
cache_peer contains settings for a specific hard-coded link between this
Squid and another software which can handle HTTP (proxy or origin
server). SSL/TLS are some which can be set when that link needs to be
encrypted.
There is also a third location where SSL certs etc are setup. On
http_port when Squid is the receiving end of SSL/TLS connections.
Amos
