Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    SSL Bump Multiple Interfaces

    Cache/Proxy
    3
    4
    810
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      Bigdaddy168 last edited by

      Hey guys,

      is it somehow possible to configure the "Custom SSL MITM Mode" so that the behavior on one interface is "Splice All" and on other interface "Splice Whitelist, Bump Otherwise."?

      Thanks in advance.

      1 Reply Last reply Reply Quote 0
      • marcelloc
        marcelloc last edited by

        With custom acls for your networks yes

        http://wiki.squid-cache.org/Features/SslPeekAndSplice

        Treinamentos de Elite: http://sys-squad.com

        Help a community developer! ;D

        1 Reply Last reply Reply Quote 0
        • D
          doktornotor Banned last edited by

          There are even configuration examples when you click the i

          1 Reply Last reply Reply Quote 0
          • B
            Bigdaddy168 last edited by

            Ok thanks for your reply! But for me it is not clear which part of configuration i have to add in the custom field. Is it enough to insert the following lines:

            acl networkx src 172.16.0.0/16

            ssl_bump splice network 1
            ssl_bump bump all

            Or is it necessary to insert something like "ssl_bump splice whitelist" somewhere between? (to get default behaviour)

            Thanks!

            1 Reply Last reply Reply Quote 0
            • First post
              Last post