Re: [squid-users] squid reverse proxy with ssl: access denied

From: Henrik Nordstrom <[email protected]>
Date: Thu, 02 Nov 2006 01:35:47 +0100

ons 2006-11-01 klockan 16:24 +0100 skrev nick humphrey:
> het (our local network)
>
> i have a weblogic server 8.1 (wl81machine) in our intranet running a
> ssl/https site (we're testing out verisign ssl).
>
> i also have installed squid 2.6 STABLE4 (with --enable-ssl) on debian
> 3 (deb3machine)
>
> squid is acting as a reverse proxy to wl81machine, basically just
> sending requests back and forth, no caching or anything, on port 8080.

Ok.

> when i try to access wl81machine from the internet i get an access
> denied error and it shows the ip address to wl81machine without the
> port:
> "
> while trying to retrieve the url: https://192.168.0.150
> the following error was encountered:
> access denied
> ...
> "

Anything in cache.log?

> i know this is got to be something wrong with my squid.conf:
> #-----START---------
> https_port 8080 cert=/usr/local/squid/etc/key.crt
> key=/usr/local/squid/etc/key.key defaultsite=192.168.0.150

defaultsite should be the official site name, i.e. the same as you have
in the cert.

The server Squid should connect to is defined by cache_peer. Which I
couldn't find any in your config btw...

Regards
Henrik

Received on Wed Nov 01 2006 - 17:35:49 MST

This archive was generated by hypermail pre-2.1.9 : Fri Dec 01 2006 - 12:00:02 MST