Find the answer to your Linux question:
Results 1 to 6 of 6
Hi All!, I hv recently setup a proxy server with iptables and squid. It won't let ppl get into some secure sites like banks. sp. www.sampath.lk/ or www.sampathnet.com/ (These are ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Mar 2005
    Location
    Sri Lanka
    Posts
    25

    iptables and squid not letting secure sites?


    Hi All!,

    I hv recently setup a proxy server with iptables and squid.

    It won't let ppl get into some secure sites like banks. sp. www.sampath.lk/ or www.sampathnet.com/ (These are bank urls with SSL enabled)

    I can log into https://172.16.50.254:10000/ my internal webmin, with no problem! or any other sites. This post is too done thru that proxy.

    Can somebody suggest where the problem might be?. Or need I supply more info.?

    Thx.

  2. #2
    Linux Guru
    Join Date
    Oct 2001
    Location
    Täby, Sweden
    Posts
    7,578
    Well, I have to admit that I don't have much experience with proxies, but I would imagine that they do cause problems with SSL, since part of SSL's function is to ensure privacy on the complete end-to-end connection. It's probably not impossible that the banks somehow detect your proxy as an evesdropper.

  3. #3
    Just Joined!
    Join Date
    Mar 2005
    Location
    Sri Lanka
    Posts
    25
    Thanks 'Dolda2000'! , can you sort of recomend or atleast guide me for a remedy!.

    Thx,

  4. $spacer_open
    $spacer_close
  5. #4
    Linux Guru
    Join Date
    Oct 2001
    Location
    Täby, Sweden
    Posts
    7,578
    Well, my point was really that if what I say is true, then there is no remedy, except not using a proxy at all.

    I'm not sure if it is true, though. It's just a theory. You may want to contact the banks and check with them.

  6. #5
    Linux User
    Join Date
    Feb 2005
    Posts
    290
    did you allow port 443 to passthru your firewall? :P

  7. #6
    Just Joined!
    Join Date
    Mar 2005
    Location
    Sri Lanka
    Posts
    25
    Yes, and I could log into sites with SSL enabled, eg. 'https://..' etc.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •