Hello everyone,
I am trying to run a squid proxy server to enable client access to my
MSExchange server via HTTPS without having to install a Microsoft
Certificate Server on my Exchange box.
I am using the following setup:
./squid -v
Squid Cache: Version 2.5.PRE7
configure options: --enable-ssl --enable-linux-netfilter
So far : I have this working
client ( Netscape or IE) <---via https ---> squid transparent proxy
via url https://squidbox:port
squid transparent proxy <--- http ---> IIS web server on Email Server.
via url https://squidbox:port
So it seems I can access an IIS server behind the squid transparent
proxy over SSL encryption from the proxy !! Yeah!!
However ; when I try to access the outlook web access part of the IIS
server via the url :
https://squidbox:port/exchange
1) I get the login prompt ( I assume still under https)
2) Immediately after successful login I get a warning from the browser
that the connection is becoming insecure ( becoming http instead of
staying https)
3)and get another login prompt ( I am sure I get this other login prompt
because I am testing from an internal machine instead of over the
internet)
The results are consistent as if the IIS webserver rewrote the entire
url in the browser to be http://IIS-exchange-server/exchange
**Has anyone come across this? What could I do to fix this so that I get
https://squidbox:port/exchange to show me the internal lan url
http://IIS-exchange-server/exchange
without breaking out of ssl encryption?
Please keep in mind that I cannot change the client browser settings,
(unless I send a proxy.cfg file to the browser I suppose ) but whatever
suggestions you have are welcome regardless. I do have control over the
IIS server and exchange should they need adjustment.
Thank you
Sincerely,
Madhav Diwan
Received on Mon May 20 2002 - 14:34:12 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:08:10 MST