On 16/05/2012 13:39, Sylvio Cesar wrote:
> 2012/5/15 Amos Jeffries<squid3_at_treenet.co.nz>:
>> On 16.05.2012 13:32, Sylvio Cesar wrote:
>>> Thanks Amos,
>>>
>>>
>>>
>>>
>>> 2012/5/15 Amos Jeffries:
>>>
>>>> On 16.05.2012 09:20, Sylvio Cesar wrote:
>>>>>
>>>>> Hi,
>>>>>
>>>>> - It possible do cache of port 443 with SSL Reverse Proxy?
>>>>
>>>>
>>>> Yes.
>>>
>>>
>>> Where I find information about of how to cache of port 443 with SSL
>>> Reverse Proxy?
>>>
>> At the point Squid receives the traffic it gets unwrapped from SSL into
>> plain HTTP. There is no special configuration needed for caching.
>>
>>
>> Amos
> Is there somewhere on the site of the squid the information that is
> accomplished cache to SSL connections?
>
> Sylvio
My squid.conf looks something like this:
cache_mgr me_at_domain.com
cache_dir ufs /var/cache/squid 128 16 128
cache_mem 64 MB
http_port 80 accel vhost
https_port 443 cert=/etc/pki/tls/certs/www.crt
key=/etc/pki/tls/private/www.key
cafile=/etc/pki/tls/misc/sub.class1.server.ca.cer
defaultsite=www.domain.com options=NO_SSLv2 sslflags=NO_SESSION_REUSE vhost
cache_peer 127.0.0.1 parent 8080 0 no-query originserver name=myAccel
login=PASS
acl our_sites dstdomain www.domain.com
http_access allow our_sites
cache_peer_access myAccel allow our_sites
cache_peer_access myAccel deny all
acl PURGE method PURGE
acl localhost src 127.0.0.1
http_access allow PURGE localhost
http_access deny PURGE
There is a rewrite proxy on the same host running on port 127.0.0.1:8080
which forwards the traffic to appropriate servers based on URI.
This archive was generated by hypermail 2.2.0 : Wed May 16 2012 - 12:00:04 MDT