Update: SQUID transparent SSL interception : Squid v3.2

In order to keep this blog post a bit more relevant, there have been some improvements since that post was written. Squid v3.2 has been released earlier this year, making ssl interception more seamless and easier. The new features for HTTPS interception can be found while reading through the man page for http_port: http://www.squid-cache.org/Versions/v3/3.2/cfgman/http_port.html More specifically: … Continue reading Update: SQUID transparent SSL interception : Squid v3.2

Preserving client IP w/ apache reverse proxy

We recently had a scenario where an apache reverse proxy needed to be deployed in front of a pair of tomcat servers. Due to security concerns, this reverse proxy was hosting mod_security and acting as a web application firewall (WAF) However, a critical requirement was that the tomcat applications would be able to see the … Continue reading Preserving client IP w/ apache reverse proxy