On 03/05/2013 03:09 AM, Amos Jeffries wrote:
> Squid tunnel functionality requires a CONNECT wrapper to generate
> outgoing connections.
> It is not yet setup to do the raw-TCP type of bypass the intercepted
> traffic would require.
Are you sure? IIRC, "ssl_bump none" tunneling code works for intercepted
connections, and that is what we claim in squid.conf:
> none
> Become a TCP tunnel without decoding the connection.
> Works with both CONNECT requests and intercepted SSL
> connections. This is the default behavior when no
> ssl_bump option is given or no ssl_bump ACLs match.
HTH,
Alex.
Received on Wed Mar 06 2013 - 00:40:54 MST
This archive was generated by hypermail 2.2.0 : Wed Mar 06 2013 - 12:00:04 MST