Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    SSL Bump Multiple Interfaces

    Cache/Proxy
    3
    4
    801
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      Bigdaddy168 last edited by

      Hey guys,

      is it somehow possible to configure the "Custom SSL MITM Mode" so that the behavior on one interface is "Splice All" and on other interface "Splice Whitelist, Bump Otherwise."?

      Thanks in advance.

      1 Reply Last reply Reply Quote 0
      • marcelloc
        marcelloc last edited by

        With custom acls for your networks yes

        http://wiki.squid-cache.org/Features/SslPeekAndSplice

        1 Reply Last reply Reply Quote 0
        • D
          doktornotor Banned last edited by

          There are even configuration examples when you click the i

          1 Reply Last reply Reply Quote 0
          • B
            Bigdaddy168 last edited by

            Ok thanks for your reply! But for me it is not clear which part of configuration i have to add in the custom field. Is it enough to insert the following lines:

            acl networkx src 172.16.0.0/16

            ssl_bump splice network 1
            ssl_bump bump all

            Or is it necessary to insert something like "ssl_bump splice whitelist" somewhere between? (to get default behaviour)

            Thanks!

            1 Reply Last reply Reply Quote 0
            • First post
              Last post

            Products

            • Platform Overview
            • TNSR
            • pfSense
            • Appliances

            Services

            • Training
            • Professional Services

            Support

            • Subscription Plans
            • Contact Support
            • Product Lifecycle
            • Documentation

            News

            • Media Coverage
            • Press
            • Events

            Resources

            • Blog
            • FAQ
            • Find a Partner
            • Resource Library
            • Security Information

            Company

            • About Us
            • Careers
            • Partners
            • Contact Us
            • Legal
            Our Mission

            We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

            Subscribe to our Newsletter

            Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

            © 2021 Rubicon Communications, LLC | Privacy Policy