RE: [squid-users] HTTP_X_FORWARDED_FOR for https request

I am using SSL bumping as below: http_port 10.10.17.23:3127 intercept http_port 10.10.17.23:3128 http_port 10.10.17.23:3129 generate-host-certificates=on dynamic_cert_mem_cache_size=4MB cert=/mycert.pem intercept ssl-bump ssl_bump server-first sslcrtd_program /usr/local/squid/libexec/ssl_crtd -s /usr/local/squid/var/lib/ssl_db -M 4MB sslcrtd_children 20 forwarded_for on Didn't get client IP :( ---------------------------------------- > From: mdiwan@diwanconsulting.com > To: ironwill42@gmail.com > CC: squid-users@squid-cache.org > Date: Fri, 22 Nov 2013 09:23:03 -0500 > Subject: Re: [squid-users] HTTP_X_FORWARDED_FOR for https request > > yes that is true, > > so with https sites using CONNECT this will not work, > > but with an sslbump implementation in squid , which http headers can > you manipulate and then forward? > > > > > -----Original Message----- > From: Will Roberts <ironwill42@gmail.com> > To: squid-users@squid-cache.org > Subject: Re: [squid-users] HTTP_X_FORWARDED_FOR for https request > Date: Fri, 22 Nov 2013 09:14:52 -0500 > > Unless you do SSL bumping, Squid will not touch the contents of HTTPS > connections. > > --Will > > On 11/22/2013 09:12 AM, Madhav V Diwan wrote: >> Add this directive to your squid.conf file >> >> forwarded_for on >> >> The documentation for the directive is here: >> http://www.squid-cache.org/Doc/config/forwarded_for/ >> >> >> >> -----Original Message----- >> From: Nil Nik <nil_fergi@hotmail.com> >> To: squid-users@squid-cache.org <squid-users@squid-cache.org> >> Subject: [squid-users] HTTP_X_FORWARDED_FOR for https request >> Date: Fri, 22 Nov 2013 14:04:02 +0000 >> >> I have setup squid (3.3.9) and Apache(https enabled) on same system. >> when I access https site on Apache through squid proxy then HTTP_X_FORWARDED_FOR is not found. >> I want to get client IP on Apache. Please help me. >> > >
Received on Fri Nov 22 2013 - 14:33:54 MST