centos7 下 apache nginx squid https正向代理

yum install httpd mod_ssl -yvim /etc/httpd/conf.d/ssl.confListen 443 https<VirtualHost *:443>
 ???ServerName example.com ???SSLEngine on ???SSLCertificateFile /cert/server.crt ???SSLCertificateKeyFile /cert/server.key ???ProxyRequests On ???ProxyVia On ???<Proxy *> ???????Order deny,allow ???????allow from all ???</Proxy></VirtualHost>systemctl restart httpd

yum install gc gcc gcc-c++ pcre-devel zlib-devel openssl-devel patch wget -ywget http://nginx.org/download/nginx-1.9.2.tar.gzwget https://github.com/chobits/ngx_http_proxy_connect_module/archive/master.ziptar -xzvf nginx-1.9.2.tar.gz unzip master.zipcd nginx-1.9.2patch -p1 < ../ngx_http_proxy_connect_module-master/patch/proxy_connect.patch./configure --prefix=/usr/local/nginx --with-http_stub_status_module --with-http_ssl_module --with-http_gzip_static_module --with-stream --add-module=/root/ngx_http_proxy_connect_module-mastermake && make install

vim /usr/local/nginx/conf/nginx.conf

worker_processes ?1;events { ???worker_connections ?1024;}http { ???include ??????mime.types; ???default_type ?application/octet-stream; ???sendfile ???????on; ???keepalive_timeout ?65; ???server { ???listen 443 ssl; ???resolver ??????????????????????8.8.8.8; ???ssl on; ???ssl_certificate /cert/server.crt; ???ssl_certificate_key /cert/server.key; ???ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ???server_name example.com; ???proxy_connect; ???proxy_connect_allow ???????????443 563; ???proxy_connect_connect_timeout ?10s; ???proxy_connect_read_timeout ????10s; ???proxy_connect_send_timeout ????10s; ???location / { ????????proxy_pass https://$host; ????????proxy_set_header Host $host; ??????????} ???????} ?}

/usr/local/nginx/sbin/nginx

yum install squid -yvim /etc/squid/squid.confhttps_port 8443 cert=/cert/server.crt key=/cert/server.keydns_nameservers 8.8.8.8http_access allow allsystemctl restart squid