Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    SSL Bump Multiple Interfaces

    Cache/Proxy
    3
    4
    837
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      Bigdaddy168
      last edited by

      Hey guys,

      is it somehow possible to configure the "Custom SSL MITM Mode" so that the behavior on one interface is "Splice All" and on other interface "Splice Whitelist, Bump Otherwise."?

      Thanks in advance.

      1 Reply Last reply Reply Quote 0
      • marcellocM
        marcelloc
        last edited by

        With custom acls for your networks yes

        http://wiki.squid-cache.org/Features/SslPeekAndSplice

        Treinamentos de Elite: http://sys-squad.com

        Help a community developer! ;D

        1 Reply Last reply Reply Quote 0
        • D
          doktornotor Banned
          last edited by

          There are even configuration examples when you click the i

          1 Reply Last reply Reply Quote 0
          • B
            Bigdaddy168
            last edited by

            Ok thanks for your reply! But for me it is not clear which part of configuration i have to add in the custom field. Is it enough to insert the following lines:

            acl networkx src 172.16.0.0/16

            ssl_bump splice network 1
            ssl_bump bump all

            Or is it necessary to insert something like "ssl_bump splice whitelist" somewhere between? (to get default behaviour)

            Thanks!

            1 Reply Last reply Reply Quote 0
            • First post
              Last post