Re: [squid-users] hotmail yahoo transparent proxy

From: Joe Cooper <joe@dont-contact.us>
Date: Mon, 04 Feb 2002 21:30:50 -0600

You've missed my point.

You can't redirect port 443 to Squid. Squid doesn't know what to do
with an SSL connection that is transparently intercepted. In other
words, this isn't a Squid question...your SSL connections must either be
explicitly configured in the browser (so a proxy CONNECT request is made
to Squid) or Squid must not be in the request path for the SSL connection.

Kancha . wrote:

> I've already done and it is not working that's why i
> put this problem in the list. Using ipchains i've
> redirected 443 port to 3128 and I've a masquraded
> networkk
>
> +-----+
> | |
> public| lnx |192.168.1.0/24
> ------| box |----------
> ip +-----+
>
>
> lnx box runs squid and masqurades.
>
>
> --- Joe Cooper <joe@swelltech.com> wrote:
>
>>Nope. Squid can't transparently proxy secure
>>connections.
>>
>>IP masquerading, or simple forwarding (if clients
>>have routable IPs) is
>>what is needed.
>>
>>Ionel GARDAIS wrote:
>>
>>
>>>yahoo mail logging send a request to a secure
>>>
>>server.
>>
>>>you must "ipchains" port 443 (i think it's this
>>>
>>one)
>>
>>>to port 3128 in order to proxy these requests too.
>>>
>>>hope this help,
>>>c u,
>>>ioio
>>>
>>--
>>Joe Cooper <joe@swelltech.com>
>>http://www.swelltech.com
>>Web Caching Appliances and Support
>>
>>
>
>
> __________________________________________________
> Do You Yahoo!?
> Send FREE Valentine eCards with Yahoo! Greetings!
> http://greetings.yahoo.com
>
>
>

-- 
Joe Cooper <joe@swelltech.com>
http://www.swelltech.com
Web Caching Appliances and Support
Received on Mon Feb 04 2002 - 20:30:47 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:06:09 MST