Magnus Moraberg:
>
> Now I wish for my clients to be also able able to use ssl/https, but
> I'm not sure how squid should be configured to do this.
>
Do you mean in a reverse-proxy environment? If so,try something like:
https_port 443 accel vhost cert=/usr/local/squid/etc/ssl/server.crt
key=/usr/local/squid/etc/ssl/server.key
cache_peer 1.2.3.4 parent 80 0 no-query front-end-https=auto
originserver name=PEER1
acl service1 dstdomain www.ab.com
cache_peer_access PEER1 allow service1
acl Safe_ports port 80 443
http_access allow service1
http_reply_access allow all
see also:
http://wiki.squid-cache.org/SquidFaq/ReverseProxy
If you're not in a reverse-proxy, squid most probably is in the network
as the clients themselves. Then the SSL transmission from clients to
Squid is unmeaning, just bypass them.
-- Jeff Pang DingTong Technology www.dtonenetworks.comReceived on Sun May 24 2009 - 04:18:23 MDT
This archive was generated by hypermail 2.2.0 : Sun May 24 2009 - 12:00:01 MDT