Magnus Moraberg:
Now I wish for my clients to be also able able to use ssl/https, but
I'm not sure how squid should be configured to do this.
Do you mean in a reverse-proxy environment? If so,try something like:
https_port 443 accel vhost cert=/usr/local/squid/etc/ssl/server.crt
key=/usr/local/squid/etc/ssl/server.key
cache_peer 1.2.3.4 parent 80 0 no-query front-end-https=auto
originserver name=PEER1
acl service1 dstdomain www.ab.com
cache_peer_access PEER1 allow service1
acl Safe_ports port 80 443
http_access allow service1
http_reply_access allow all
see also:
http://wiki.squid-cache.org/SquidFaq/ReverseProxy
If you're not in a reverse-proxy, squid most probably is in the network
as the clients themselves. Then the SSL transmission from clients to
Squid is unmeaning, just bypass them.
--
Jeff Pang
DingTong Technology
www.dtonenetworks.com
