albertok
commented
7 years ago LittleProxy does not currently support transparent mode, it can only be an explicit proxy.
Open VanitySoft opened 7 years ago
albertok
commented
7 years ago LittleProxy does not currently support transparent mode, it can only be an explicit proxy.
I have littleproxy with MITM(Impersonating) working perfectly. below works nicely.
wget https://facebook.com --ca-cert=/home/jeryl/generated-ca.cer -e use_proxy=on -e https_proxy=http://10.1.1.1:8444I now want to transparently configure my box to use the proxy on all outbound requests over 443. my proxy is running on a separate unix 'box1' on our network 10.1.1.1 on port 8444 so I updated my iptables rules on the 'box2' where users make calls.
iptables -t nat -A OUTPUT -p tcp -o -lo --dport 443 -DNAT --to 10.1.1.1:8444performing
wget https://facebook.com --ca-cert=/home/jeryl/generated-ca.cershould forward requests to the proxy server(8444) on box1.HOWEVER, it does not seem httpRequest are being decoded. i get the error: decoderResults=falure.. because the content is empty.?? shouldn't littleproxy be able to decode this? is this a bug?
it looks like this is not working and provide simular functionality as Suid SSL-Bumping: https://www.mydlp.com/how-to-configure-squid-3-2-ssl-bumping-dynamic-ssl-certificate-generation/