Open mnatan opened 2 years ago
MITM proxy supports our whitelist use case like this:
mitmweb --set block_list="/!(~d google.com | ~d facebook.com)/444" --set ignore_hosts="~d google.com | ~d facebook.com"
but ignore_hosts
completely removes the access log, which is an issue.
Alternative projects to consider:
Found here: https://github.com/topics/transparent-proxy
Closing for now - we might revisit this in the future but these projects did not meet our expectations. We will use Squid proxy.
We want to support 2 whitelist types:
By default, we should deny all other traffic
Additionally, MITM supports TCP proxying, so we should be able to create rules for non-HTTP traffic, like LDAP or SMTP.
Definition of done