Re: [squid-users] Reverse Proxy SSL, continued from Henrik Nordstrom on 2007-01-16 (squid-users)

From: Henrik Nordstrom <henrik@dont-contact.us>
Date: Wed, 17 Jan 2007 00:24:09 +0100

tis 2007-01-16 klockan 13:06 -0500 skrev Chatham Will Ctr AFCCC/SCO:

> > > WWW<--SSL-->[Squid 2.26 Reverse
> Proxy]<--SSL-->[firewall]<--SSL-->[Apache web server]
> > >
>
> I have the above scenario created like so:
>
> squid.conf
> -------------------
> http_port proxyserver.com:80
> https_port proxyserver:443 cert=/etc/httpd/conf.d/squid.crt
> key=/etc/httpd/conf.d/squid.key defaultsite=webserver.com:8443
> cache_peer webserver.com parent 8443 0 no-query originserver

You haven't told Squid that the peer is ssl encrypted.. With the above
configuration Squid will attempt to use http while talking to the peer.

Regards
Henrik

application/pgp-signature attachment: Detta är en digitalt signerad meddelandedel

Received on Tue Jan 16 2007 - 16:24:18 MST

This archive was generated by hypermail pre-2.1.9 : Thu Feb 01 2007 - 12:00:01 MST