-
Notifications
You must be signed in to change notification settings - Fork 228
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ERR_PROXY_CONNECTION_FAILED #57
Comments
me too, website is all fine, but forwardproxy (lastest version from caddyserver.com) just not working... header / {
forwardproxy {
|
Confirming that I have reproduced the error and will look into. I am very busy right now, but the issue is serious, so I'll try to spend some time on it. The issue seems to not occur, if I remove |
Specifically, It appears that forwardproxy is no longer able to see requests to This could be caused by a change in either Chromium or Caddy. Note that any domain could be used for probe_resistance; the advantage of |
Hi, now I can see Hidden Proxy Page! without .localhost using Chrome and SwitchyOmega. If I remove probe_resistance, error logs “[ERROR 407 ] Invalid credentials“, not working... |
Yep, it's Chrome. TODO for myself before closing the issue: make changes in documentation of I believe the issue is resolved, and could be closed; but going to wait for a while to see if @testcaoy7 would have time to report their experience with Firefox/non-localhost secret domain. @mdlenoir, I am unable to reproduce the new issue you are having. It is likely that you got a typo when inputting credentials, or that browser remembered wrong/old credentials. Try recreating profile in SwitchyOmega/restart the browser. |
Ouch, do we know what changed in Chrome? I'm relieved that it's not an internal Caddy change/bug though! |
I would not call it a bug in either of those things, just an interesting gimmick, that we were taking advantage of. Previously, when user visited
As a result, if user accidentally by mistake entered their secret link, when proxy was not in use, the request would not hit the network, helping preserve the secret link. Not anymore. If you use |
Looks like this is related: https://bugs.chromium.org/p/chromium/issues/detail?id=964231 Comment 1 says:
The proxy support in Chrome WIP doc has bypass rules for |
@mholt many thanks for digging that up! This issue confirms that it was an intentional decision on Google Chrome's part. I think it's easier to use other domains, than to pass flags to Chrome, since "the potential leak" isn't really a serious issue, especially when used with plausible domains. |
I am sorry. But I still got "ERR_PROXY_CONNECTION_FAILED" after the remove of "probe_resistance secret.localhost". My server does not allow 80 and 443 port. So I ran forwardproxy at 10443 port. But forwardproxy doesn't accept my connection. |
@testcaoy7 @mdlenoir are you still getting "ERR_PROXY_CONNECTION_FAILED" after using non-localhost probe_resistance link? |
@sergeyfrolov I just set a new server and create a new SwitchyOmega profile, it works. |
1. Is bug reproducible with latest
forwardproxy
build?Yes
2. What are you trying to do?
Config a forward proxy.
3. What is your entire Caddyfile?
4. How is your client configured?
SwitchyOmega plug-in with Chromium browser.
5. How did you run Caddy? (give the full command and describe the execution environment). If multiple servers are used (for example with
upstream
), describe those as well.caddy -conf CaddyFile
6. Please paste any relevant HTTP request(s) here.
7. What did you expect to see?
Browse Internet through a HTTPS proxy. (example.com:10443)
8. What did you see instead (give full error messages and/or log)?
Chromium reports “ERR_PROXY_CONNECTION_FAILED” and the access.log is empty.
9. How can someone who is starting from scratch reproduce the bug as minimally as possible?
The text was updated successfully, but these errors were encountered: