[squid-users] Squid Cache (Version 3.0.STABLE20) Windows SBS 2008 Reverse Proxy over Https

From: Hakan Cosar <H.Cosar_at_schuetze-berlin.de>
Date: Wed, 19 Jan 2011 09:41:13 +0100

Hello,

we are trying to get reverse proxy work for Windows SBS 2008. Active-Sync and OWA works fine on SBS.
I've exported the certificate from SBS as .pfx and converted it to .pem format. The Domain name remote.sci.de is not public; instead we use the public IP-Address.
Any idea?

Cosar

--squid.conf----------------------------------------------------------------
visible_hostname revproxy
debug_options ALL,1
extension_methods RPC_IN_DATA RPC_OUT_DATA

https_port 192.168.50.199:443 accel cert=/etc/squid/cert/sbs2008.pem key=/etc/squid/cert/sbs2008.key defaultsite=remote.sci.de

cache_peer 192.168.5.34 parent 443 0 no-query originserver login=PASS front-end-https=on name=exchangeServer

acl owa dstdomain remote.sci.de
cache_peer_access exchangeServer allow owa
cache_peer_access exchangeServer allow all
never_direct allow owa
http_access allow owa
http_access allow all
miss_access allow owa
miss_access allow all
--squid.conf----------------------------------------------------------------

Cache.log says:

2011/01/18 16:24:57| Squid Cache (Version 3.0.STABLE20): Exiting normally.
2011/01/18 16:24:58| Starting Squid Cache version 3.0.STABLE20 for i386-redhat-linux-gnu...
2011/01/18 16:24:58| Process ID 10381
2011/01/18 16:24:58| With 1024 file descriptors available
2011/01/18 16:24:58| DNS Socket created at 0.0.0.0, port 38483, FD 7
2011/01/18 16:24:58| Adding domain sci.de from /etc/resolv.conf
2011/01/18 16:24:58| Adding nameserver 192.168.5.34 from /etc/resolv.conf
2011/01/18 16:24:58| User-Agent logging is disabled.
2011/01/18 16:24:58| Referer logging is disabled.
2011/01/18 16:24:58| Unlinkd pipe opened on FD 11
2011/01/18 16:24:58| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
2011/01/18 16:24:58| Swap maxSize 102400 + 8192 KB, estimated 8507 objects
2011/01/18 16:24:58| Target number of buckets: 425
2011/01/18 16:24:58| Using 8192 Store buckets
2011/01/18 16:24:58| Max Mem  size: 8192 KB
2011/01/18 16:24:58| Max Swap size: 102400 KB
2011/01/18 16:24:58| Version 1 of swap file with LFS support detected...
2011/01/18 16:24:58| Rebuilding storage in /var/spool/squid (CLEAN)
2011/01/18 16:24:58| Using Least Load store dir selection
2011/01/18 16:24:58| Current Directory is /
2011/01/18 16:24:58| Loaded Icons.
2011/01/18 16:24:58| Accepting HTTPS connections at 192.168.50.199, port 443, FD 13.
2011/01/18 16:24:58| HTCP Disabled.
2011/01/18 16:24:58| Configuring Parent 192.168.5.34/443/0
2011/01/18 16:24:58| Ready to serve requests.
2011/01/18 16:24:58| Done reading /var/spool/squid swaplog (48 entries)
2011/01/18 16:24:58| Finished rebuilding storage from disk.
2011/01/18 16:24:58|        48 Entries scanned
2011/01/18 16:24:58|         0 Invalid entries.
2011/01/18 16:24:58|         0 With invalid flags.
2011/01/18 16:24:58|        48 Objects loaded.
2011/01/18 16:24:58|         0 Objects expired.
2011/01/18 16:24:58|         0 Objects cancelled.
2011/01/18 16:24:58|         0 Duplicate URLs purged.
2011/01/18 16:24:58|         0 Swapfile clashes avoided.
2011/01/18 16:24:58|   Took 0.03 seconds (1918.31 objects/sec).
2011/01/18 16:24:58| Beginning Validation Procedure
2011/01/18 16:24:58|   Completed Validation Procedure
2011/01/18 16:24:58|   Validated 121 Entries
2011/01/18 16:24:58|   store_swap_size = 308
2011/01/18 16:24:59| storeLateRelease: released 0 objects

-----BEGIN SSL SESSION PARAMETERS-----
MFECAQECAgMBBAIAhAQABDAgagjWSe3u/7aXYFMw117Ty+i+g2VyHR1hRYLV/PND
yxtyiDO7NYN7MVbNoZ+TOw6hBgIETTWxLqIEAgIBLKQCBAA=
-----END SSL SESSION PARAMETERS-----
2011/01/18 16:26:54| TCP connection to 192.168.5.34/443 failed
Received on Wed Jan 19 2011 - 08:41:23 MST

This archive was generated by hypermail 2.2.0 : Wed Jan 19 2011 - 12:00:03 MST