Dear Amos,
thank you for your fast help. The config works perfectly.
Kind regards
Michael
Amos Jeffries schrieb:
> You have a big huge problem.
>
> You wanted a reverse proxy. But you configured something else very weird
> instead.
>
> Also, the bug in Squid-3 which allowed this configuration to work at all
> has just been fixed.
>
> You need to reconfigure your squid properly as a reverse proxy.
>
> http://wiki.squid-cache.org/ConfigExamples/Reverse/BasicAccelerator
>
> Note the comment at the top of the squid configuration section "This
> configuration MUST appear at the top ..."
>
> Assuming that the above was your whole config... Erase the contents of
> squid.conf and replace with only this:
>
> cache_mgr info_at_mycompany.com
> access_log /var/log/squid/access.log squid
>
> https_port 443 accel
> cert=/etc/ssl/reverse_proxy/customer.mycompany.com.cert
> key=/etc/ssl/reverse_proxy/customer.mycompany.com.key
> defaultsite=customer.mycompany.com options=NO_SSLv2
>
> cache_peer 192.168.1.50 parent 8080 0 originserver no-query
> name=tomcatapplication forcedomain=customer.mycompany.com
>
> acl reverse_tomcatapplication dstdomain customer.mycompany.com
>
> http_access allow reverse_tomcatapplication
> http_access deny all
>
> cache_peer_access tomcatapplication allow reverse_tomcatapplication
> cache_peer_access tomcatapplication deny all
>
> never_direct allow all
>
>
> Amos
>
>
Received on Mon Oct 05 2009 - 19:31:23 MDT
This archive was generated by hypermail 2.2.0 : Tue Oct 06 2009 - 12:00:02 MDT