Hi,
I would like to configure direct connections to a secure banking site.
I have tried a couple of different always_direct options, but squid
logs show connection attempts still refer the request on to its
cache_peer parents.
It'd be good to know what i'm doing wrong; thanks! Hope this is enough
info.
(ps squidguard is not blocking this site (: )
tried:
------
1. always_direct allow SSL_ports CONNECT
2. acl banks dstdomain bendigobank.com.au
always_direct allow banks
error: "The document contained no data. Try again later...."
-----
version: squid 2.4.6-1 (running on debian unstable box with 2.4.x kernel)
--------
current config:
--------------
http_port 8080
cache_peer server1 parent 8080 3130
cache_peer server2 parent 8080 3130
cache_peer server3 parent 8080 3130
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_mem 64 MB
cache_dir ufs /var/spool/squid 512 16 256
redirect_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf
half_closed_clients off
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl purge method PURGE
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny CONNECT !SSL_ports
acl vicnetnetworks src "/etc/squid/myNetworks"
http_access allow myNetworks
http_access deny all
icp_access allow all
cache_effective_user proxy
cache_effective_group proxy
forwarded_for off
always_direct allow SSL_ports CONNECT
-- Kind regards ChristianReceived on Mon May 06 2002 - 19:27:42 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:07:56 MST