You've missed my point.
You can't redirect port 443 to Squid. Squid doesn't know what to do
with an SSL connection that is transparently intercepted. In other
words, this isn't a Squid question...your SSL connections must either be
explicitly configured in the browser (so a proxy CONNECT request is made
to Squid) or Squid must not be in the request path for the SSL connection.
Kancha . wrote:
> I've already done and it is not working that's why i
> put this problem in the list. Using ipchains i've
> redirected 443 port to 3128 and I've a masquraded
> networkk
>
> +-----+
> | |
> public| lnx |192.168.1.0/24
> ------| box |----------
> ip +-----+
>
>
> lnx box runs squid and masqurades.
>
>
> --- Joe Cooper <joe@swelltech.com> wrote:
>
>>Nope. Squid can't transparently proxy secure
>>connections.
>>
>>IP masquerading, or simple forwarding (if clients
>>have routable IPs) is
>>what is needed.
>>
>>Ionel GARDAIS wrote:
>>
>>
>>>yahoo mail logging send a request to a secure
>>>
>>server.
>>
>>>you must "ipchains" port 443 (i think it's this
>>>
>>one)
>>
>>>to port 3128 in order to proxy these requests too.
>>>
>>>hope this help,
>>>c u,
>>>ioio
>>>
>>--
>>Joe Cooper <joe@swelltech.com>
>>http://www.swelltech.com
>>Web Caching Appliances and Support
>>
>>
>
>
> __________________________________________________
> Do You Yahoo!?
> Send FREE Valentine eCards with Yahoo! Greetings!
> http://greetings.yahoo.com
>
>
>
-- Joe Cooper <joe@swelltech.com> http://www.swelltech.com Web Caching Appliances and SupportReceived on Mon Feb 04 2002 - 20:30:47 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:06:09 MST