- Accueil
- » Forum
- » Serveurs
- » squid https
Pages : 1
#1 Le 29/03/2021, à 09:00
- kbvz
squid https
Bonjour,
J'ai un soucis avec squid qui ne laisse pas passer les flux en https. j'ai cru comprendre que c'était un classique.
acl localnet src monreseau/24 # RFC1918 possible internal network
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl SSL_ports port 443 # https
acl CONNECT method CONNECT
acl lan src monreseau/24
http_access allow !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost manager
http_access allow lan
http_access allow SSL_ports
http_access deny manager
http_access allow localhost
#http_access allow all
http_port 3128 #transparent
http_access allow all #allow
maximum_object_size 1 MB
cache_dir ufs /var/spool/squid 100 16 256
cache_swap_high 70
coredump_dir /var/spool/squid
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320
cache_effective_user proxy
cache_effective_group proxy
acl to_ipv6 dst ipv6
# Magic entry. Place first in your config. This makes sure Squid has the IP available.
http_access deny to_ipv6 !all
tcp_outgoing_address monreseau !to_ipv6
tcp_outgoing_address dead:beef::1 to_ipv6
dns_nameservers 8.8.8.8 mondns1 mondsn2 mondns3
url_rewrite_program /usr/bin/squidGuard -c /etc/squidguard/squidGuard.conf
error_directory /usr/share/squid/errors/French
## Add following lines to your squid.conf ##
# ********** SNMP **********
acl snmpnet src 127.0.0.1
acl snmpnet src monipserveur
acl snmp***** snmp_community *****
snmp_port ****
snmp_access allow snmp***** snmpnet
snmp_access deny all
# **************************
Le port 443 en TCP est ouvert sur le firewall
pouvez vous m'aider svp ?
Merci
Hors ligne
Pages : 1
- Forum
- » Serveurs
- » squid https