This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

HTTPS dropped trough webproxy

Hello NG

I defined webproxy (transparent proxy with autenthication). Now I have the problem that all https traffic is dropped althoug https protocol is defined by default to allow https traffic.

Why this problem? I can't and I wan't not open https traffic for all host or all specific hosts that i have to reach.

Some idea why the problem persists?

Thanks in advance
Ramon

This thread was automatically locked due to age.

0 BAlfson over 15 years ago

Ramon, please watch the 'HTTP Access live log' to see what information you can get about the attempts to connect. Do you have the box checked for 'Scan HTTPS (SSL) Traffic'?

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel
0 Ramon67 over 15 years ago in reply to BAlfson

Hi Bob

In the logfile i see,that all 443 (https) traffic is dropped. I haven't check the box to scan HTTPS.

Ramon
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 15 years ago
OK, it sounds like you were looking at the Packet Filter log, and that's where we were going to go to confirm when you saw nothing in the 'HTTP Access live log'. In a transparent mode, the Proxy only handles port-80 traffic. You can use any one of three ways to allow HTTPS access:
[LIST=1]
Allow traffic with a Packet Filter rule. This can be as liberal as 'Internal (Network) -> HTTPS -> Internet : Allow' or as restrictive as '[My workstation] -> HTTPS -> [My bank] : Allow'.

Select 'Scan HTTPS (SSL) Traffic' on the 'Global' tab of 'Web Security >> HTTP/S'.

Use the Proxy in one of the non-transparent modes by pointing browsers at the IP of 'Internal (Address)' on port 8080. Doing this causes the Proxy to handle all of the services listed in 'Allowed target services' on the 'Advanced tab of 'Web Security >> HTTP/S'.
[/LIST]
Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel