Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Squid HTTPS | Transparent Proxy | External CA

    Scheduled Pinned Locked Moved Cache/Proxy
    2 Posts 2 Posters 1.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mamen0330
      last edited by

      Hi All,

      I have been successfully configured HTTPS filtering via squid and squidguard by generating and using an internal-ca certificate. However, my problem is the hassle of importing the internal-ca certificate to every user workstations in my network.

      Is there any way that I can use our company's wildcard SSL certificate (root ca, intermediate ca, server certificate, private key) to work with squid? This will save me time (as we have hundreds of workstations in our organization) as our wildcard SSL certificate are already verified by different browsers and services so no need to add them manually one-by-one to all workstations.

      Help, greatly appreciated :-)

      1 Reply Last reply Reply Quote 0
      • D
        doktornotor Banned
        last edited by

        No, absolutely NOT. You need to have your own CA so that Squid can issue certificates for arbitrary domains on the fly. Otherwise, use "Splice All".

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.