HTTPS inspection
-
Hello ;D
I'm new here!
I'm writing becouse i wanna create a system that do https inspection.
I have a isolation network with 3 hosts : Window 10 ( victim of http inspection ), pfsense ( whit squid ) , Ubuntu to analyze with wireshark the dump.
In pratical: I have create that network, the CA is setted to do its work and it does it well! Squid works fine ( trasparent proxy, and https mitm ). My problem is: i do not know how to get the dump of packets sniffing by Squid…. if it is possible or not...
Thank you very much !! -
If you try to sniff the packets then all you'll see is encrypted data. You can look at Squid and SquidGuard logs to try to get any information but I think you'll be sniffing the LAN and WAN ports instead.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.