You're welcome ;) This config works several years on my servers :) 12.03.2018 02:17, Nicolas Kovacs пишет: > Le 11/03/2018 à 19:44, Yuri a écrit : >> It's trivial to implement. Here is my config snippet: >> >> # SSL bump rules >> acl DiscoverSNIHost at_step SslBump1 >> acl NoSSLIntercept ssl::server_name_regex >> "/usr/local/squid/etc/acl.url.nobump" >> ssl_bump peek DiscoverSNIHost >> ssl_bump splice NoSSLIntercept >> ssl_bump bump all >> >> acl.ur.nobump fragment: >> >> # Adobe updates (web installation) >> # This requires to splice due to SSL-pinned web-downloader >> (get|platformdl|fpdownload|ardownload[0-9])\.adobe\.com > I gave this configuration a spin on my local proxy, and it works great, > without special firewall rules. > > Thanks very much! You made my day! > > Niki > -- "C++ seems like a language suitable for firing other people's legs." ***************************** * C++20 : Bug to the future * *****************************
Attachment:
signature.asc
Description: OpenPGP digital signature
_______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users
