On 10/06/2013 11:19 p.m., Amos Jeffries wrote:
> On 10/06/2013 3:21 p.m., Luis Daniel Lucio Quiroz wrote:
>> Hello,
>>
>> Im a little ut of update (since squid3.1) and I wonder if this is
>> possible to do with Squid3.3.
>>
>> - Reverse proxy with a single IP, able to forward to different servers
>> depending on hostname request.
>>
>> LD
>
> Sort of and maybe.
>
> 3.3 development has mostly been in the area of "ssl-bump" interception
> and improving the security for intercepted traffic. However, this does
> have a small amount of knock-on effects for the reverse proxy usage.
>
> Firstly, I'm not aware of anyone successfully doing this so you are in
> experimental areas now...
>
> You could try setting your proxy up as if it were a port 443 / HTTPS
> interceptor with server-first ssl-bumping. The logics enabled inside
> Squid by the server-first options are what you are asking for, but the
> big question is whether that will work in reverse-proxy traffic
> without screwing things up.
>
> Amos
PS. feedback on how that goes is welcome. If it breaks anything or does
not work some assistance making it meet your requirements is also
welcome, you are not the only one interested in this use case it is just
that nobody has applied development or testing time towards it yet.
Amos
Received on Mon Jun 10 2013 - 11:23:36 MDT
This archive was generated by hypermail 2.2.0 : Mon Jun 10 2013 - 12:00:11 MDT