Search squid archive

squid AND ssl

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi,
I have a simple webserver that listens on port 80 for requests. I
would like to secure access to this webserver using squid and SSL. I
can access the simple website through http without any issue. When I
try and access it using https: I get a message in the cache file. See
attached.
The web page error show up as Connection to 192.168.0.1 Failed
The system returned:
    (13) Permission denied

I am running Squid stable 2.7 and I used openssl to generate the cert and key.
I have attached my conf file and cache errors.
Can squid secure an unsecure webserver the way i am trying to do do
http_port 192.168.0.1:8080 
cache_mgr Administrator@server2003
visible_hostname server2003
cache_dir ufs c:/squid/var/cache 512 16 256
acl Query urlpath_regex cgi-bin \?
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl PURGE method PURGE
acl to_localhost dst 127.0.0.1/8
acl SSL_ports port 441 443
https_port 192.168.0.1:443 accel cert=c:/squid/etc/ssl/mycert.pem key=c:/squid/etc/ssl/mykey.pem vhost
cache_peer 192.168.0.1  parent 443 0 no-query originserver default ssl sslflags=DONT_VERIFY_PEER
acl Safe_ports port 80 21 441 443 563 70 210 210 1025-65535 280 488 591 777
# acl CONNECT method CONNECT
acl all src 0.0.0.0/0.0.0.0
url_rewrite_host_header off
collapsed_forwarding on
acl webSrv dst 192.168.0.1
acl webPrt port 80
http_access allow webSrv webprt
http_access allow all
always_direct allow all
acl localnetwork1 src 192.168.0.0/255.255.255.0
hierarchy_stoplist cgi-bin ?
refresh_pattern ^ftp:		1440	20%	10080
refresh_pattern ^gopher:	1440	0%	1440
refresh_pattern .		0	20%	4320
coredump_dir c:/squid/var/cache
cache_mem 64 MB
dns_testnames localhost
http_access allow manager localhost
# http_access deny manager
# http_access deny !Safe_ports
# http_access allow PURGE localhost
http_access allow localnetwork1
# http_access deny PURGE
access_log c:/squid/var/logs/access.log squid
# no_cache deny QUERY
http_reply_access allow all


[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux