On 10/11/2011 6:00 p.m., Anandha V wrote:
Hello all, In the squid i can find the following tags under SSL, sslproxy_client_certificate, sslproxy_client_key, sslproxy_cafile In the reverse proxy configuration can we assign certificates using above tags instead of using the following in sslcert, sslkey, sslcafile, in cache_peer configuration.
The global sslproxy_* directives control what Squid uses on DIRECT traffic when it needs to handle all the SSL/TLS details of a https:// URL.
cache_peer contains settings for a specific hard-coded link between this Squid and another software which can handle HTTP (proxy or origin server). SSL/TLS are some which can be set when that link needs to be encrypted.
There is also a third location where SSL certs etc are setup. On http_port when Squid is the receiving end of SSL/TLS connections.
Amos
