Configuring squid to continue tunneling CONNECT requests after client disconnects and reconnects again

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

Configuring squid to continue tunneling CONNECT requests after client disconnects and reconnects again

Oğuz İsmail Uysal
I will explain it as clear as I can do. There is limited internet access on a network. It lets you send data and receive reply once, then resets the connection. Like I send CONNECT request to my server, squid replies with 200 Connection established, I receive it, and connection is reset immediately afterwards. Is there any possible way to implement HTTPS connection over this network ?
_______________________________________________
squid-users mailing list
[hidden email]
http://lists.squid-cache.org/listinfo/squid-users
Reply | Threaded
Open this post in threaded view
|

Re: Configuring squid to continue tunneling CONNECT requests after client disconnects and reconnects again

Alex Rousskov
On 02/11/2017 09:53 AM, Oğuz İsmail Uysal wrote:
> I will explain it as clear as I can do. There is limited internet access
> on a network. It lets you send data and receive reply once, then resets
> the connection. Like I send CONNECT request to my server, squid replies
> with 200 Connection established, I receive it, and connection is reset
> immediately afterwards. Is there any possible way to implement HTTPS
> connection over this network ?

What happens if you use Squid as an HTTPS proxy rather than an HTTP
proxy? In other words, can you configure your client to connect over SSL
to Squid's https_port instead of connecting over plain TCP to Squid's
http_port? After that connection is established, the client will send
CONNECT in both cases, but perhaps the "network" will not reset the SSL
connection to Squid because it would not be able to see HTTP[S]
transaction boundaries inside that SSL connection?

If SSL connections to Squid are prohibited on your network, and only one
HTTP transaction is allowed per HTTP connection, then I cannot think of
a way to send standard HTTPS requests through a standard HTTP proxy.

Alex.

_______________________________________________
squid-users mailing list
[hidden email]
http://lists.squid-cache.org/listinfo/squid-users