On Wed, 2002-10-02 at 15:20, Robert Collins wrote:
> On Thu, 2002-10-03 at 06:10, Florin Andrei wrote:
> > Is there any way to emulate Apache::Gateway with Squid-2.5?
> >
> > http://cpan.perl.org/authors/id/C/CC/CCWF/
> >
> > In a nutshell, the desired behaviour is this:
> > 1. the gateway sits at the border of a network, users from outside can
> > see only the gateway
> > 2. users "see" the gateway in a browser, via HTTPS; encryption is
> > mandatory
> > 3. users need to authenticate to the gateway in order to use it
> > 4. the gateway accepts addresses like
> > https://the.gateway.address/?url=http://some.server.inside/some/file.html and does "the right thing": displays the requested URL as it were its own
> > 5. should be able to map http, https and ftp servers from inside
> >
> > Seems like an authenticated encrypted reverse proxy, but with some more
> > stuff added.
>
> You should be able to do it easily with 2.6. The SSL acceleration will
> allow the https:// bit. A smart redirector will give you the
> https://...?url=> to url value translation. The internal HTTP server
> and FTP servers will run trivially. You'll need to chat with Henrik
> about the SSL gatewaying, as that is needed to access the internal
> https:// servers on a new SSL connection.
I just realised there's one more thing to be done: text/html documents
need to be processed, and internal <A HREF=""> directives need to be
rewritten on-the-fly:
<A HREF="/dir/image.png"> need to be rewriten to:
<A HREF="https://gateway/?url=http://server/dir/image.png">
Otherwise pages will not have images!
To my best knowledge, this cannot be accomplished with Squid, but
perhaps you can prove me wrong?
-- Florin Andrei "POSIX is a hobbled standard and does not matter." - Linus TorvaldsReceived on Wed Oct 02 2002 - 16:27:07 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:10:34 MST
