Search squid archive

Re: Reverse proxying http and https

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Amos Jeffries wrote:
I suggest adding defaultsite=mysite.example.net to those to help out users with broken software.

Thanks for the suggestion!

add name=XX to the existing cache_peer
then add:
cache_peer cached.mycache.net parent 443 0 originserver name=YY
all cache_peer_access and cache_peer_domains need to now refer to XX and YY instead of the peer FQDN.

Great, this seems to work! Thanks! My configuration is now:

http_port mycache.net:80 vhost vport defaultsite=cached.mycache.net
https_port mycache.net:443 vhost vport defaultsite=cached.mycache.net key=/etc/squid/mycache.key cert=/etc/squid/mycache.crt

cache_peer cached.mycache.net parent 80 0 originserver name=http
cache_peer cached.mycache.net parent 443 0 originserver name=https ssl sslflags=DONT_VERIFY_PEER

acl all src 0.0.0.0/0.0.0.0
acl valid_dst dst mycache.net
http_access allow valid_dst
http_access deny all

acl http_dst port 80
acl https_dst port 443

cache_peer_access http allow http_dst
cache_peer_access https allow https_dst
cache_peer_access http deny all
cache_peer_access https deny all

--
  Taneli Leppä         | Crasman Co Ltd
  <taneli@xxxxxxxxxx>  | <http://www.crasman.fi/>

[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux