Squid configuration directive ssl_bump
History:
- Changes in 3.1 ssl_bump
-
New Access control for which CONNECT requests to an http_port marked with an ssl-bump flag are actually "bumped". Please see the ssl-bump flag of an http_port option for more details about decoding proxied SSL connections. DEFAULT: No requests are bumped.
NOCOMMENT_START # Example: Bump all requests except those originating from localhost and # those going to webax.com or example.com sites. # # acl broken_sites dstdomain .webax.com # acl broken_sites dstdomain .example.com # ssl_bump deny localhost # ssl_bump deny broken_sites # ssl_bump allow all
Configuration Details:
| Option Name: | ssl_bump |
|---|---|
| Replaces: | |
| Requires: | --enable-ssl |
| Default Value: | none |
| Suggested Config: |
|
This ACL controls which CONNECT requests to an http_port marked with an sslBump flag are actually "bumped". Please see the sslBump flag of an http_port option for more details about decoding proxied SSL connections. By default, no requests are bumped. See also: http_port ssl-bump This clause supports both fast and slow acl types. See http://wiki.squid-cache.org/SquidFaq/SquidAcl for details. # Example: Bump all requests except those originating from localhost and # those going to webax.com or example.com sites. acl localhost src 127.0.0.1/32 acl broken_sites dstdomain .webax.com acl broken_sites dstdomain .example.com ssl_bump deny localhost ssl_bump deny broken_sites ssl_bump allow all |
|
Search
Introduction
- About Squid
- Why Squid?
- Squid Developers
- How to Help Out or Donate
- Getting Squid
- Squid Source Packages
- Squid Deployment Case-Studies
- Squid Software Foundation
Documentation
- Configuration:
- FAQ and Wiki
- Guide Books:
- Non-English
- More...
Support
- Security Advisories
- Bugzilla Database
- Mailing lists
- Contacting us
- Commercial services
- Project Sponsors
- Squid-based products
Miscellaneous
- Developer Resources
- Related Writings
- Related Software:
- Squid Artwork