squidreversegeneral 0.4.5 /usr/local/pkg/squid.inc General /pkg_edit.php?xml=squid_reverse_general.xml&id=0 Web Servers /pkg.php?xml=squid_reverse_peer.xml Mappings /pkg.php?xml=squid_reverse_uri.xml Redirects /pkg.php?xml=squid_reverse_redir.xml Real Time /squid_monitor.php?menu=reverse Sync /pkg_edit.php?xml=squid_reverse_sync.xml&id=0 Squid Reverse Proxy General Settings listtopic Reverse Proxy Interface(s) reverse_interface Use CTRL + click to select multiple interfaces.

Important:
To use Squid as a reverse proxy ONLY: After saving configuration here, you must tick the 'Enable Squid Proxy' checkbox under Services - Squid Proxy Server - General and click Save there.
To disable the reverse proxy ONLY (without disabling Squid completely): Unselect all 'Reverse Proxy Interface(s)', uncheck both 'Enable HTTP Reverse Proxy' and 'Enable HTTPS Reverse Proxy' below and click Save. ]]> interfaces_selection wan User Defined Reverse Proxy IPs reverse_ip Note: Separate entries by semi-colons (;)

Important: Any entry here must be a valid, locally configured IP address. ]]> input 70 External FQDN reverse_external_fqdn The external fully qualified domain name of the WAN IP address. input 70 Reset TCP Connections on Unauthorized Requests deny_info_tcp_reset If checked, the reverse proxy will reset the TCP connection if the request is unauthorized. checkbox on Squid Reverse HTTP Settings listtopic Enable HTTP Reverse Proxy reverse_http Important: You must add a proper firewall rule with destination matching the 'Reverse Proxy Interface(s)' address. ]]> checkbox reverse_http_port,reverse_http_defsite off Reverse HTTP Port reverse_http_port Default: 80 ]]> input 5 80 Reverse HTTP Default Site reverse_http_defsite Note: Leave empty to use 'External FQDN' value specified above. ]]> input 70 Squid Reverse HTTPS Settings listtopic Enable HTTPS Reverse Proxy reverse_https Important: You must add a proper firewall rule with destination matching the 'Reverse Proxy Interface(s)' address. ]]> checkbox reverse_https_port,reverse_https_defsite,reverse_ssl_cert,reverse_int_ca,reverse_ignore_ssl_valid,reverse_check_clientca,reverse_owa off Reverse HTTPS Port reverse_https_port Default: 443 ]]> input 5 443 Reverse HTTPS Default Site reverse_https_defsite Note: Leave empty to use 'External FQDN' value specified in 'Squid Reverse Proxy General Settings'. ]]> input 70 Reverse SSL Certificate reverse_ssl_cert Choose the SSL Server Certificate here. select_source descr refid none none Intermediate CA Certificate (If Needed) reverse_int_ca PEM format here. ]]> textarea 75 5 base64 Ignore Internal Certificate Validation reverse_ignore_ssl_valid If checked, internal certificate validation will be ignored. checkbox on Check Client Certificate reverse_check_clientca If checked, clients need a client certificate to authenticate. checkbox off Client Certificate CA reverse_ssl_clientca Choose the CA used to issue client authentication certificates. select_source descr refid none none Client Certificate Revocation List reverse_ssl_clientcrl Note: This must match the 'Client Certificate CA' selected above!

Important: After updating the CRL in System - Cert Manager - Certificate Revocation, remember to press the 'Refresh CRL' button below.
Otherwise, the updated CRL will not have any effect on Squid reverse proxy users!

]]> select_source descr refid none none OWA Reverse Proxy General Settings listtopic Enable OWA Reverse Proxy reverse_owa If checked, Squid will act as an accelerator/SSL offloader for Outlook Web App. checkbox reverse_owa_ip,reverse_owa_activesync,reverse_owa_rpchttp,reverse_owa_mapihttp,reverse_owa_webservice,reverse_owa_autodiscover CAS-Array / OWA Frontend IP Address(es) reverse_owa_ip Note: Separate entries by semi-colons (;) ]]> input 70 Enable ActiveSync reverse_owa_activesync If checked, ActiveSync will be enabled. checkbox Enable Outlook Anywhere reverse_owa_rpchttp If checked, RPC over HTTP will be enabled. checkbox Enable MAPI HTTP reverse_owa_mapihttp This feature is only available with at least Microsoft Exchange 2013 SP1 ]]> checkbox Enable Exchange WebServices reverse_owa_webservice There are potential DoS side effects to its use. Please avoid unless really required. ]]> checkbox Enable AutoDiscover reverse_owa_autodiscover You also should set up the autodiscover DNS record to point to you WAN IP. ]]> checkbox squid_resync();