Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    HTTPS inspection

    Scheduled Pinned Locked Moved General pfSense Questions
    2 Posts 2 Posters 571 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • V Offline
      valgio95
      last edited by

      Hello  ;D
      I'm new here!
      I'm writing becouse i wanna create a system that do https inspection.
      I have a isolation network with 3 hosts : Window 10 ( victim of http inspection ), pfsense ( whit squid ) , Ubuntu to analyze with wireshark the dump.
      In pratical: I have create that network, the CA is setted to do its work and it does it well! Squid works fine ( trasparent proxy, and https mitm ). My problem is: i do not know how to get the dump of packets sniffing by Squid…. if it is possible or not...
      Thank you very much !!

      1 Reply Last reply Reply Quote 0
      • S Offline
        Stewart
        last edited by

        If you try to sniff the packets then all you'll see is encrypted data.  You can look at Squid and SquidGuard logs to try to get any information but I think you'll be sniffing the LAN and WAN ports instead.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.