Re: Redirect for transparent proxy does not work with https

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

You cannot transparent proxy HTTPS, it's inherent in the design of SSL

Have a look at

http://en.tldp.org/HOWTO/mini/TransparentProxy-2.html

section 2.3

Luis Fernando C. Talora wrote:

Fellows,

I've tried to use RedHat Linux 8.0 to build a transparent proxy with squid (squid-2.4.STABLE7-4) and netfilter (iptables-1.2.6a-2). Squid is listening on port 8080. When a http packet arrives, the requisition appears on squid log and the page is viewed nicely. When a https requisition is made, squid seem not to recieve the redirection from netfilter, though. The nat rule used for redirection follows:

     iptables -t nat A PREROUTING -i $EXTERNAL_INTERFACE -p tcp -d ! $INTERNAL_NETWORK -m multiport --
dports 80,443 -j REDIRECT --to-port 8080

Can anybody please help me?

Thanks a lot!

Regards,

Luís Fernando C. Talora






[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux