On 1/15/19 8:59 AM, FredB wrote: > I'm testing squid 4.5 and facing two issues with intermediate CA download > > At first there is no source IP and I don't know how to allow this kind > of requests with an identification acl How about using transaction_initiator ACL to identify requests generated by Squid? This will not solve your "ssl3_get_server_certificate:certificate verify failed (1/-1/0)" problem, of course, but at least you would not have to disable authentication. Alex. _______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users