The pfSense Store

Author Topic: How to use ssl Let's Encrypt with squid  (Read 225 times)

0 Members and 1 Guest are viewing this topic.

Offline thanhlangso

  • Newbie
  • *
  • Posts: 2
  • Karma: +0/-0
    • View Profile
How to use ssl Let's Encrypt with squid
« on: December 27, 2017, 09:18:25 am »
Hello,
I have create ssl Let's Encrypt by Acme on pfsense 2.4 and I want use for squid.
But in squid I can't choose SSL Let's Encrypt. Why?
And how to fix this?

Offline sichent

  • Jr. Member
  • **
  • Posts: 56
  • Karma: +9/-0
    • View Profile
Re: How to use ssl Let's Encrypt with squid
« Reply #1 on: December 27, 2017, 12:34:01 pm »
Hope you meant why cannot I use Let's Encrypt certificate to decrypt HTTPS connections in Squid - if so see answer at https://docs.diladele.com/faq/squid/non_root_ca.html

Offline thanhlangso

  • Newbie
  • *
  • Posts: 2
  • Karma: +0/-0
    • View Profile
Re: How to use ssl Let's Encrypt with squid
« Reply #2 on: December 28, 2017, 02:16:51 am »
do you have any solutions for this problem with squid proxy?

Offline sichent

  • Jr. Member
  • **
  • Posts: 56
  • Karma: +9/-0
    • View Profile
Re: How to use ssl Let's Encrypt with squid
« Reply #3 on: December 28, 2017, 07:11:08 am »
You need to use self generated Root CA to decrypt HTTPS.

It is *luckily* not possible to use lets encrypt. Imagine for a second it was possible - would you connect to all that WiFi spots in the modern world? Everyone would be able to decrypt your HTTPS without you even knowing.