• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Squid3-devel ssl interception doesn't work for mobile devices

Scheduled Pinned Locked Moved pfSense Packages
3 Posts 2 Posters 1.4k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • B
    bellera
    last edited by Mar 27, 2014, 1:48 PM Mar 27, 2014, 11:18 AM

    Android devices have their CAs ROM stored.

    They permit to add certificates in DER format. But the installed DER are user certificates, not system certificates.

    Example for Nexus devices:

    https://support.google.com/nexus/answer/2844832?hl=en

    I tested squid3-devel transparent https with:

    Vodafone's Mobile Phone - HTC Desire - Android 2.2.2

    Tablet - BQ Edison 3G - Android 4.0.4

    Not working. The Android browser and Firefox browser (tablet) don't see the selfsigned pfSense CA.

    pfSense's selfsigned CA is exported in PEM format. I converted it to DER format and tested in a Windows computer before installing it in Android devices.

    I'm wondering if there is any solution (rooting the devices, perhaps?).

    And I'm also thinking if I will have the same problem with iOS devices.

    1 Reply Last reply Reply Quote 0
    • B
      bellera
      last edited by Mar 27, 2014, 1:46 PM

      iOS (tested with iPAD)

      Works for Safari.

      Doesn't work for Chrome:

      http://apple.stackexchange.com/questions/103157/certificate-error-when-using-chrome-for-ios-with-company-ca

      1 Reply Last reply Reply Quote 0
      • M
        marcelloc
        last edited by Mar 27, 2014, 5:31 PM

        I have not tested it on iphone or android yet.

        Treinamentos de Elite: http://sys-squad.com

        Help a community developer! ;D

        1 Reply Last reply Reply Quote 0
        1 out of 3
        • First post
          3/3
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
          This community forum collects and processes your personal information.
          consent.not_received