Squid filtering https
-
Hi guys
i have small problem
squid works, blacklist works but for http only
how can i configure it to work with https too?for example
http://www.facebook.com is blocked, but
https://www.facebook.com is not blockedi guess problem is because im using proxy in transparent mode and all requests over port 80 are fwded to 3128, but requests over 443 not.
can u help, thnx
-
You'd need this: http://forum.pfsense.org/index.php/topic,62256.0.html
(Definitely not ready for production use.)
-
is there any walk around ?
im ready to manually add all http urls -
You mean work around? No, you cannot block encrypted traffic without squid seeing it.
-
yes, i mean to block encrypted traffic (only specific ones) without blocking it (port 443) in firewall.
-
This is what I did to block https://facebook.com along with squid-guard(http). But on the other-hand users can still use ultra-surf or change their dns to either google or any other one and access that stupid site! >:(
with DNS forwarder enabled! but remember blocking (check the img) this way blocks Fb for everyone on the LAN!
successfully working! ;)
-
is it possible to use this as solution
http://linuxlabz.blogspot.com/2012/05/https-traffic-block-in-squid-26.htmlis there way to forward all inside traffic over port :443 to port :3128?