diff options
| author | Marcello Coutinho <marcellocoutinho@gmail.com> | 2014-12-29 23:37:56 -0200 |
|---|---|---|
| committer | Charlie Root <root@proxy03.lab.local> | 2014-12-29 23:37:56 -0200 |
| commit | 1aab45a41e4f0bc3b493bac0cbd25a32bff129ac (patch) | |
| tree | 11e7530747c9356efe1851b8d247cdcdfe072e98 /config/squid3/34/squid.inc | |
| parent | 28c552b11ab71035755720ff2a6092f45b961439 (diff) | |
| download | pfsense-packages-1aab45a41e4f0bc3b493bac0cbd25a32bff129ac.tar.gz pfsense-packages-1aab45a41e4f0bc3b493bac0cbd25a32bff129ac.tar.bz2 pfsense-packages-1aab45a41e4f0bc3b493bac0cbd25a32bff129ac.zip | |
squid3.4 - update compile args
fix captive portal check_ip for 2.2
fix ssl_bump with no authentication
bump package version
Diffstat (limited to 'config/squid3/34/squid.inc')
| -rwxr-xr-x | config/squid3/34/squid.inc | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/config/squid3/34/squid.inc b/config/squid3/34/squid.inc index a2917515..0e5a173c 100755 --- a/config/squid3/34/squid.inc +++ b/config/squid3/34/squid.inc @@ -1698,6 +1698,11 @@ function squid_resync_auth() { $conf .="http_access deny sglog\n"; } if ($auth_method == 'none' ) { + // SSL interception acl options part 2 without authentication + if ($settingsconfig['ssl_proxy'] == "on"){ + $conf .= "always_direct allow all\n"; + $conf .= "ssl_bump server-first all\n"; + } $conf .="# Setup allowed acls\n"; $allowed = array('allowed_subnets'); if ($settingsconfig['allow_interface'] == 'on') { |