Re: [squid-users] Passing a URL directly to squid through the web browser... from Martin Marji Cermak on 2004-12-23 (squid-users)

From: Martin Marji Cermak <mc1@dont-contact.us>
Date: Fri, 24 Dec 2004 11:52:22 +0800

Hello,
I gess you need somehow to get to your personal proxy because the
company proxy blocks URL you want to go to.

Even a very resctrictive WWW proxy usually allows the CONNECT method,
which a need for HTTPS to work. If you can access an HTTPS URL, it means
your proxy allows CONNECT (or HTTPS port 443 is not blocked by your
company firewall).

I usually use the CONNECT method and an SSH tunnel to get to the net
through a resctrictive company proxy.
So I open an SSH connection to my Linux server where I have my http
proxy (e.g. tinyproxy for Linux is sufficient for this) and within this
SSH connection I redirect a local port (the box I'm working at at work)
to this proxy, e.g. localhost:3128 -> myserver:3128

Then you just configure your Web-browser to use localhost:3128 as an
http-proxy and that is it. Your http traffic goes throgh the ssh tunnel
to your remote proxy.

Unfortunately, I am not sitting behind a proxy at the moment so I don't
have more details to share.

I just googled and I believe this is what I used a year ago:
http://bama.ua.edu/cgi-bin/man-cgi?ssh-http-proxy-connect+1
Putty (ssh client for Win) also support HTTP proxy and connect.

Some restrictive company proxies let you make a CONNECT to the 443 port
only (port dedicated for HTTPS). In such a case you need to modify the
ssh daemon at your remote box you want to connect to so it listen at
port 443.

There is also another possibility - an HTTP tunnel solution.
Search google for "HTTP tunnel".

Regards,
Marji

Perez, Dennys (GE Healthcare, non-ge) wrote:
> Hi,
> I have squid setup, and I was wondering if I could pass a URL to squid
> directly from the browser. The reason is that @ work, all ports are
> blocked, and only http is open. I could use
> http://mysquid.com:3128+http://website.com if possible, but I always get
> an error from my proxy server that the address is incorrect (it doesn't
> read the http part after the port#) Is there another way to use this?
> Adding the server and port to the browser connection options won't work,
> since I need to go through the company's proxy to even get out to the
> 'net.
>
> Any suggestions will be appreciated.
> Thanks
> D
Received on Thu Dec 23 2004 - 20:51:42 MST

This archive was generated by hypermail pre-2.1.9 : Sat Jan 01 2005 - 12:00:03 MST