Squid whitelists and https



  • Hello,

    I am trying to setup the squid module in pfsense to use a whitelist in transparent mode that also works for https.  Was originally using 1.0.1, now using a recent snapshot.

    The whitelist works fine with http connections but as some sites use https as well they break.

    Looking at the logs, squid does not appear to know at all about the https connections and thus does not tunnel them.

    Is there any way to set this up so it works?

    I realize i could set up https as a general firewall rule, but those seem to require ip addresses rather than urls and the whitelist is large(>50) so would be unreliable and a real pain to administer.  ie every time a website changed its address would need to alter the firewall rule.

    Thanks in advance for any assistance.

    • Robert

Log in to reply