[Squid] (Squid) is not configured to allow SSL tunnel to port 80

因为一个组件需要访问 dropbox 的 API,所以,临时搭一个 proxy,借用美国同事的机器。

我用的这个 docker image,
docker run –name squid -d -p 8010:3128 Datadog/squid

在 chrome 里面,设置了 switchy omega 到该机器的地址端口,能够正常工作,打开油管啥的, etc.

如果我用 proxifier, protocol 设置 http 模式,check 都通过,但是设置成 https,就会报错。


[43:29] Testing Started. Proxy Server Address:	10.35.35.87:8010 Protocol:	HTTPS Authentication: NO [43:29] Starting: Test 1: Connection to the Proxy Server
[43:29] IP Address: 10.35.35.87
[43:29] Connection established
[43:29] Test passed.
[43:29] Starting: Test 2: Connection through the Proxy Server Error: the proxy server (Squid) is not configured to allow SSL tunnel to port 80. To fix the problem please find and comment the following line in the Squid configuration file (squid.conf): http_access deny CONNECT !SSL_ports The proxy server reply header is: HTTP/1.1 403 Forbidden Server: squid/3.5.12 Mime-Version: 1.0 Date: Mon, 27 Sep 2021 09:43:32 GMT Content-Type: text/html;charset=utf-8 Content-Length: 3441 X-Squid-Error: ERR_ACCESS_DENIED 0 Vary: Accept-Language Content-Language: en X-Cache: MISS from cf3b7970725b X-Cache-Lookup: NONE from cf3b7970725b:3128 Via: 1.1 cf3b7970725b (squid/3.5.12) Connection: keep-alive
[43:29] Test failed.
[43:29] Testing Finished.

提示我把这句配置注释掉
“http_access deny CONNECT !SSL_ports”

于是 ,我去 https://gist.github.com/sritchie/1357652 下载了一个样本,把“头”那部分删除掉了。
然后把这句给#注释掉了。

但是貌似没有啥用。不知道是不是这个.conf 太老了,或者有太多不需要的配置了,还是说,要走 https 的 protocol,得配置相关的 cert,等等?

不知道有没有 squid 专家,指点一下

谢谢!

发表评论

您的电子邮箱地址不会被公开。