Re: [squid-users] Forward HTTPS requests using squid.conf

From: Mark Elsen <mark.elsen@dont-contact.us>
Date: Wed, 18 Jan 2006 07:48:31 +0100

> Hi,
>
> My current setup of proxy server is using MS ISA2000
> Server. I'm planning to replace my MS ISA server with
> a Squid Proxy Server. Users who have internet access
> does not have to configure their proxy settings in
> Internet Explorer, they just have to configure their
> default gateway pointing to the ISA server. The ISA
> server has the permission to go to the internet by the
> firewall. Users can access http, https, ftp without
> any problem. The ISA server has only one network
> card.
>
> Prior to the replacement of ISA server, Squid server
> is configured as a transparent proxy. But further
> research shows that HTTPS cannot be proxied
> transparently. Only HTTP is allowed. With
> transparent proxy, I dont have any problem with HTTP.
>
> I want to maintain the same configuration of users not
> entering the proxy server IP address in the Internet
> Explorer settings. What would be the best solution
> for allowing (HTTPS, FTP and other) requests without
> configuring IE settings? The firewall, proxy and the
> users are all in the same network segment (i.e
> 192.168.1.0/24). Assuming that I will be using
> transparent proxy, how can I forward all requests
> except HTTP to the firewall using squid.conf?
>

 By definition , your intercepting setup; is installed for "port-80" requests.
 So , https requests won´t even reach SQUID, and follow the default
 gateway ip-path, towards the wonderfull world of the Net.

 M.
Received on Tue Jan 17 2006 - 23:48:33 MST

This archive was generated by hypermail pre-2.1.9 : Wed Feb 01 2006 - 12:00:01 MST