All you want to do is have squid function as a relay for your OWA system. If it is now recording :80, squid has been configured to be the terminus of the SSL/TLS tunnel. If you want to do this, you will need to modify the HTTP header to inform OWA that you are encrypting the traffic at your network border if you are using a version of Exchange newer than 5.5. Merton Campbell Crockett On Mon, 21 Feb 2005, Guy Speier wrote: > While I was having trouble recompiling ssl, I decided to test a minimal > config: > > >From the internet on port 3128 > Redirect to the squid box (still on 3128) > >From the squid box to internal on port 80. > > It looks like it was close, except I get this isn the log: > 1109020150.264 36 69.179.44.23 TCP_MISS/404 1864 GET > http://exchangemail.firstlogic.com/exchange:80/ - DIRECT/X.X.X.X > text/html > > So, why does it append the :80 on to the url for my exchange server? > > When I test this from my LAN, I can access the URL only when the :80 is > not there. > > Please help! > Guy > > > > -----Original Message----- > From: Guy Speier > Sent: Monday, February 21, 2005 10:48 AM > To: 'Henrik Nordstrom' > Cc: squid-users@xxxxxxxxxxxxxxx > Subject: RE: [squid-users] squid and outlook web access > > Thank you Henrik, > > I will recompile with --enable-ssl and change http_port to https_port. > > I have two questions regaring this: > 1) Do I need to have a certificate (for verisign or anywhere else)? > 2) Is samba required for this configuration? > > -----Original Message----- > From: Henrik Nordstrom [mailto:hno@xxxxxxxxxxxxxxx] > Sent: Monday, February 21, 2005 10:40 AM > To: Guy Speier > Cc: squid-users@xxxxxxxxxxxxxxx > Subject: Re: [squid-users] squid and outlook web access > > > > On Mon, 21 Feb 2005, Guy Speier wrote: > > > Hello, > > > > I am sorry for the multiple posts, but I am stuck on resolution for > > this. > > > > We have an internal (i.e. on our LAN) outlook web server that we are > > trying to provide internet access to, via a squid server. > > > > The internet client will browse to > http://exchangeserver.domain.com:443 > > This looks odd.. http on port 443. Shouldn't this be https? (which > requires https_port in squid.conf..) > > Regards > Henrik > -- BEGIN: vcard VERSION: 3.0 FN: Merton Campbell Crockett ORG: General Dynamics Advanced Information Systems; Intelligence and Exploitation Systems N: Crockett;Merton;Campbell EMAIL;TYPE=internet: mcc@xxxxxxxxxxxxxxx TEL;TYPE=work,voice,msg,pref: +1(805)497-5045 TEL;TYPE=work,fax: +1(805)497-5050 TEL;TYPE=cell,voice,msg: +1(805)377-6762 END: vcard