[zorp-hu] SSLProxy
Tuska Viktor
zorp-hu@lists.balabit.hu
Thu, 07 Apr 2005 14:28:24 +0200
Udv,
felhasznaltam az archivumban levo javaslatokat, de nem tudom mukodesre
birni a zorp-ot transparent https proxy-kent. Mit ronthatok el?
Ime, ami a policy-ben van:
class MyHttpProxy(HttpProxy):
def config(self):
HttpProxy.config(self)
class MyHttpsProxy(PsslProxy):
def config(self):
PsslProxy.config(self)
self.server_need_ssl = TRUE
self.client_need_ssl = TRUE
self.client_cert = '/etc/zorp/myhttps.crt'
self.client_key = '/etc/zorp/myhttps.key'
self.client_verify_type = SSL_VERIFY_NONE
self.server_verify_type = SSL_VERIFY_NONE
self.shutdown_soft = TRUE
self.stack_proxy = MyHttpProxy
Hibauzenet:
core.stderr(3): (Log thread): Traceback (most recent call last):
core.stderr(3): (Log thread): File
"/usr/share/zorp/pylib/Zorp/Dispatch.py", line 206, in accepted
core.stderr(3): (Log thread): return
session.service.startInstance(session)
core.stderr(3): (Log thread): File
"/usr/share/zorp/pylib/Zorp/Service.py", line 297, in startInstance
core.stderr(3): (Log thread): session.client_stream.name =
session.session_id + '/' + self.proxy_class.name + '/client'
core.stderr(3): (Log thread): TypeError: cannot concatenate 'str' and
'NoneType' objects
core.policy(1): (local@zorp@tatooine/nosession): Connection denied by
policy;protocol='1',remote='AF_INET(192.168.0.1:35483)',
local='AF_INET(213.253.194.2:443)', dest='AF_INET(213.253.194.2:443)'
Zorp verzio: 3.0.3
Koszontem,
Viktor
ui:
(non-transparent https proxy-kent sem ment, de gondoltam kezdjuk az
egyszerubb esettel.)