FedoraThis forum is for the discussion of the Fedora Project.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I'm wondering if it's possible to configure Squid (and a browser) so that the client makes the connection to the proxy over HTTPS even though the final web server connection is only HTTP.
I would like to run a proxy server on my linux box at home and then use that as a proxy from work or other places. But my ISP seems to block incoming HTTP connections. HTTPS connections are not blocked.
So to get around this, can I configure squid (or even a browser for that matter) to connect with something like:
Browser client => HTTPS => squid proxy => HTTP => normal-non-ssl-site.
This is my distro, though I don't think this is relevant. Please move as appropriate thanks.
# cat /etc/redhat-release
Fedora Core release 6 (Zod)
# uname -a
Linux compaqlaptop 2.6.22.14-72.fc6 #1 SMP Wed Nov 21 15:12:59 EST 2007 i686 i686 i386 GNU/Linux
Yes I'm capable of reading. Thanks for the tip. Nowhere is such a configuration documented and I don't think this is supported. My attempted workaround was to run a local squid proxy (on localhost i.e. my client, and point browser at localhost for a proxy.) and force it to use a peer over ssl (my original proxy, which does not accept unencrypted traffic since my ISP blocks this.) But that didn't work either. Does ssl=>peer squid config support this? I still can't tell but I couldn't get it working.
Silly me I later realized, I can of course just tunnel over ssh (using the -L localport:remotehost:remoteport option) so the solution for me in this case is to just ssh into the original proxy box with the tunneling enabled and tunnel a local port directly to the proxy.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.