Squid can be easily used to provide SSL acceleration services for Outlook Web Access. It can also speak SSL to the backend Exchange server. Later versions of Squid-2.6 support all the methods used by WebDAV by default. Please consider upgrading to at least the latest Squid-2.6 STABLE release before attempting this.
The example situation involves a single Outlook Web Access server and a single Squid server. The following information is required:
The IP of the Squid server (ip_of_squid)
The 'public' domain used for Outlook Web Access (owa_domain_name)
The IP of the Outlook Web Access server (ip_of_owa_server)
https_port ip_of_squid:443 cert=/path/to/certificate/ defaultsite=owa_domain_name
cache_peer ip_of_owa_server parent 80 0 no-query originserver login=PASS front-end-https=on name=owaServer
acl OWA dstdomain owa_domain_name
cache_peer_access owaServer allow OWA
never_direct allow OWA
# lock down access to only query the OWA server!
http_access allow OWA
http_access deny all
miss_access allow OWA
miss_access deny all
No comments:
Post a Comment