On Thu, 17 Nov 2005, Christoph Haas wrote:
Yes. Just don't enforce/run authentication on the "lower" Squid. Forward the requests to the "higher" Squid which will ask for authentication. This authentication request (HTTP return code 407) is returned to the client. So in the end authentication is handled through the "lower" Squid.
This changed with Squid-2.5. Nowdays you need to explicitly allow forwarding of authentication in the cache_peer directive.
Regards Henrik
