[squid-users] https_port + ssl-bump + ipv6 from Lo�c Blot on 2013-09-10 (squid-users)

From: Lo�c Blot <loic.blot_at_unix-experience.fr>
Date: Tue, 10 Sep 2013 10:13:20 +0200

Hello all,
i don't know if it's a bug, but there is a strange issue with https_port
when ipv6 is enabled.

I have 4 squid 3.3.8 proxies (on OpenBSD 5.2). 2 on IPv4 only and 2 with
both IPv4 and IPv6.

On IPv4 only this configuration line works (--disable-ipv6 option
enabled):

https_port 3130 intercept ssl-bump cert=/etc/ssl/wildcard-proxies.crt
key=/etc/ssl/wildcard-proxies.key

On IPv4 and IPv6 squid proxies, squid doesn't accept the certificates:
FATAL: No valid signing SSL certificate configured for https_port
0.0.0.0:3130

I haven't found solutions on the web. Any idea ?

-- 
Best regards, 
Loïc BLOT, Engineering
UNIX Systems, Security and Networks
http://www.unix-experience.fr

Received on Tue Sep 10 2013 - 08:13:41 MDT

This archive was generated by hypermail 2.2.0 : Wed Sep 11 2013 - 12:00:04 MDT