On 28/07/2014 10:15 p.m., Sucheta Joshi wrote:
>
>
>
> Hi,
>
> Our client is using Squid proxy. We need to do following configurations in
> Squid Proxy. We are using SquidGard UI to configure this.
>
> Block facebook and linkedin main sites but allow access to some of the
> facebook and Linkedin URL’s based on certain keywords. While doing this
> settings it url_regex worked for http access, but when we tested same for
> https it gives webpage not found.
>
> Need input on this.
Look in your Squid access.log.
Notice how the HTTPS traffic shows up as CONNECT requests with a
hostname/IP and ":" then port number. *only*.
Like so:
"CONNECT static-a.cdn.facebook.com:443 1.1"
This "static-a.cdn.facebook.com:443" part is the URL available to Squid
(and passed on to the squidguard URL helper). If you are going to use
regex patterns to match on URL that is all you have available for the
pattern to work on.
PS. you would be better off using dstdom_regex or dstdomain ACL types in
squid.conf when expecting to match CONNECT requests by URL.
Amos
Received on Mon Jul 28 2014 - 11:46:12 MDT
This archive was generated by hypermail 2.2.0 : Mon Jul 28 2014 - 12:00:05 MDT