Hi All
Same here - proxy.pac, asking the users to configure a proxy or trying to
provide .reg files to do it is just asking for trouble. I'm working on a
way of making an iptables script that lets SSL connections connect directly
via NAT'ing, though it's proving to be tricky because of all the vlan
interfaces that exist on the box. In the end, I'm not even sure this will
run smoothly along side squid.
If anyone else has some ideas, please feel free to share them.
Aaron
Sturgis, Grant wrote:
Hello all,
It appears that it is impossible to transparent proxy HTTPS (if you
think this is not true, please let me know!).
What are the alternatives? Do you just let users go directly out to the
web server? We are trying to avoid using PAC files since they tend to
cause problems for travelers.
Thanks for any ideas,
Grant
---------
Pardon this rubbish:
This electronic message transmission is a PRIVATE communication which contains
information which may be confidential or privileged. The information is intended
to be for the use of the individual or entity named above. If you are not the
intended recipient, please be aware that any disclosure, copying, distribution
or use of the contents of this information is prohibited. Please notify the
sender of the delivery error by replying to this message, or notify us by
telephone (877-633-2436, ext. 0), and then delete it from your system.
--
Aaron McDonnell
Network Administrator
Network Operations Centre
University of Western Ontario
Tel: 519-661-2111 ext. 86558
