Re: [squid-users] Intercept HTTPS without using certificates - Just apply a QoS on the connexion

From: Alex Crow <alex_at_nanogherkin.com>
Date: Thu, 15 May 2014 20:10:37 +0100

Hi,

Welcome to the practically incomprehensible world of QoS on Linux - look
up "LARTC" and then feel the fear!

It's really powerful but even after 14 years of managing Linux gateways
I still prefer you just use shorewall to take away the complexity - and
you are welcome to call me lazy ;-)

Alex

On 15/05/14 20:04, Antoine Klein wrote:
> Ok thanks, it could be a good idea !
>
> Do you know if we can apply a QoS with the bucket concept of delay
> pool using the Linux QoS Tools ?
>
> 2014-05-15 14:41 GMT-04:00 Leonardo Rodrigues <leolistas_at_solutti.com.br>:
>> Em 15/05/14 14:59, Antoine Klein escreveu:
>>
>>> Hi there,
>>>
>>> I need to install squid to apply a QoS in a private network with the delay
>>> pool.
>>> In fact, this network offer a public WIFI, so that's not possible to
>>> configure a proxy on clients.
>>>
>>> Is it possible to intercept HTTPS connexion, apply a Delay Pool and
>>> forward the request without decipher the SSL packet ?
>>>
>> I really dont think that's possible. Anyway, you can always use your
>> Linux (or whatever OS you're using) QoS tools to acchieve something similar
>> to delay pools but on NATted connections. You can have squid intercepting
>> TCP/80 connections and apply delay pools, the TCP/443 (and all other indeed)
>> connections can be throttled by QoS SO tools.
>>
>>
>>
>> --
>>
>>
>> Atenciosamente / Sincerily,
>> Leonardo Rodrigues
>> Solutti Tecnologia
>> http://www.solutti.com.br
>>
>> Minha armadilha de SPAM, NÃO mandem email
>> gertrudes_at_solutti.com.br
>> My SPAMTRAP, do not email it
>>
>>
>>
>
>
Received on Thu May 15 2014 - 19:10:41 MDT

This archive was generated by hypermail 2.2.0 : Fri May 16 2014 - 12:00:05 MDT