Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 617 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Secure connections in transparent mode?

MojoQC
Hi there,

I am having some plans to activate the http proxy when the V7.5 will be released. I looked at the documentations on the Astaro web site and found this : 


The advantage of this mode is that no additional administration or client-side configuration is necessary, the disadvantage however is that only HTTP (port 80) requests can be processed.


But the thing is, i NEED those secure connections to be active. A lot of my users go on secure web sites on a daily basis for job. I am actually running on an ASG220 with V7.403 and in the Web Security -> HTTP/S tab I see something called "Scan HTTPS (SSL) Traffic".

Does that means it will redirect SSL traffic into the proxy too?

Thanks,
Jonathan


This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to MojoQC
    The HTTP / HTTPS proxy does, indeed handle HTTP / HTTPS traffic on ports other than port 80; either the documentation you read was poorly worded, or you are misintrepreting it (in context)... I don't have time to go look up the docs in question, but here's a quick rundown

    The HTTP/S Proxy will allow you access session, SSL (HTTPS) or not, on any port defined in the Allowed Target Services list under the Advanced tab of the HTTP/S Proxy configuration.  All the new HTTPS Scanning option adds to the picture is the ability to scan content accessed in a secure sesson; without this feature, SSL content is just passed thru the proxy.  So never fear, feel free to try out the HTTP Proxy, it works fine for both HTTP and HTTPS websites.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.