On Thu, 27 Jan 2011 11:31:21 -0800, Anthony Saenz wrote:
> I'm sure this has been brought up tons of times before but I simply
> can't find the answer... My current setup is as follows:
>
> PC -> HAProxy -> Squid -> The World
>
> The reason why I'm using HAProxy is for development environment
> switching which is based off cookies. (I inherited things this way) I'm
> aware that browsers use CONNECT when setup to use a proxy for
> connections but this isn't the case since I have HAProxy handling the
> frontend.
>
> Is there any way to get SSL requests working through Squid without
> configuring proxy settings on the browser and do a straight TCP pass?
> HAProxy has this functionality but doesn't support dynamic backend hosts
> which is the biggest problem.
>
> Any help would be appreciated!
Hmm, tricky.
Is HAPpoxy passing absolute URI to Squid? as in "GET http://example.com/
HTTP/1.1".
If it is sending normal web server reformat requests ie "GET /
HTTP/1.1\r\nHost: example.com", you could get away with the
"protocol=https" option on http_port. This makes Squid treat the URL as
https://example.com/ and things fix themselves up but breaks any non-HTTPS
traffic arriving in that port.
Amos
Received on Tue Feb 01 2011 - 00:19:19 MST
This archive was generated by hypermail 2.2.0 : Tue Feb 01 2011 - 12:00:04 MST