Hello everyone!
I have got several WLAN VLANs for different SSIDs and for each VLAN there is a webproxy Profile being set. Once a WLAN user connects with his laptop his webproxy profile is being found - that works.
Further on each webproxy profile uses transparent mode or AD authentication - both works.
Users can browse through HTTP site using the transparent or set proxy.
BUT: Currently the Option "Scan HTTPS (SSL) traffic" is checked. To properly use a browser for surfing each user has to install the Astaro's (version 7.501) CA certificate I provide for download.
Our company's guest shouldn't do those "complex" stuff.
WISHED: NOT to scan HTTPS traffic for their connections.
BUT: When disabling "Scan HTTPS (SSL) traffic" NO SSL websites can be opend (no logon pages, nothing). Firefox even says "the proxy server is refusing connections".
Why doesn't it work to NOT use the proxy for HTTPS traffic? I don't want to go with the CA certificate for the users but it doesn't work.
The logs don't tell anything about any drops - there is nothing shown in the proxy/HTTP/s log file/s when this option is disabled.
I created a packet filter rule that HTTPS is allowed when not using the proxy. But nothing happens.
Urgent help needed [:(]
This thread was automatically locked due to age.
