> Hello，I configured https_port in squid.conf . However when I access
> https websites using Firefox，it shows "Your connection is not secure" .
> The error like this:
> www.amazon.com <http://www.amazon.com> used an invalid security
> This certificate is valid for 220.127.116.11 only.
> Error code: SSL_ERROR_BAD_CERT_DOMAIN
> My CA produced by openssl is a Self-signed certificate.
There are two poitns of brokenness here.
Firstly, has your Firefox been configured with the DER certificate of
that CA so that it trusts your CA?
Without that Firefox will not trust *any* certs generated by your Squid.