RE: [squid-users] Squid 3.0 Reverse SSL Proxy to Exchange 2003 OW A

I was doing something similar.

Browser --SSL-> Squid --SSL--> OWA

I ran into a bug with the RSA SecurID pages but other than that it worked.

Might need to tighten up the ACLs.

Here's my config...

visible_hostname squidhost.algorithmics.com
cache_mgr dwinkler@algorithmics.com

https_port 443 cert=/opt/squid/etc/owahost.algorithmics.com.crt
key=/opt/squid/etc/owahost.algorithmics.com.key
cafile=/opt/squid/etc/cacert.crt defaultsite=owa.algorithmics.com

cache_peer owahost.algorithmics.com parent 443 0 no-query ssl proxy-only
originserver login=PASS sslcert=/opt/squid/etc/owahost.algorithmics.com.crt
sslkey=/opt/squid/etc/owahost.algorithmics.com.key sslflags=DONT_VERIFY_PEER

ssl_unclean_shutdown on

acl owa-exchange urlpath_regex \/exchange(\/|$)
acl owa-webid urlpath_regex \/WebID\/

acl all src 0.0.0.0/0.0.0.0
acl all-dst dst 0.0.0.0/0.0.0.0
acl owa-host dst owaipaddress/255.255.255.255

http_access allow owa-host owa-exchange
http_access allow owa-host owa-webid
http_reply_access allow all-dst
http_access deny all
http_access deny all-dst

-----Original Message-----
From: Ben Keepper [mailto:ben@keepper.net]
Sent: Monday, January 26, 2004 1:42 PM
To: squid-users@squid-cache.org
Subject: [squid-users] Squid 3.0 Reverse SSL Proxy to Exchange 2003 OWA

Greetings,

I posted directly to the newsgroup last night, and thought that might be
=
an issue.

I was wondering if anybody was interested in posting a squid.conf =
dealing w/ the above issue.
Also any documentation on accomplishing this solution would be =
appreciated.

Thank you,

Ben
Received on Mon Jan 26 2004 - 11:51:42 MST