So when you use Internet Explorer, in the access.log, you see a GET request, but if you use Firefox you see a CONNECT? Does Firefox get passed the certificate from the Squid proxy, or the certificate from the website? I don't think it is possible to make squid only sslbump some clients, but not 100% sure. I'm pretty new to ssl in squid, but for people to help you, a copy of your squid.conf would be useful. As well as part of your access.log showing Internet Explorer connecting and Firefox browsing the internet. -----Original Message----- From: Makkok [mailto:szemolbakk@xxxxxxxxx] Sent: Tuesday, 1 July 2014 8:02 p.m. To: squid-users@xxxxxxxxxxxxxxx Subject: SSL decryption problem using Mozilla Firefox Hi All, I am able to decrypt packets with Squid ssl bump feature when Internet Explorer used, but when Mozilla used I cannot decrypt the dumped packets. The root CA is the same as in IE so the private key is the same. What's wrong? Thanks you for any advice! Andrew -- View this message in context: http://squid-web-proxy-cache.1019090.n4.nabble.com/SSL-decryption-problem-us ing-Mozilla-Firefox-tp4666567.html Sent from the Squid - Users mailing list archive at Nabble.com.
