Forwarding MITM Proxy Data

  • I know that I can setup a MITM HTTPS proxy using pfSense and Squid so that the firewall can scan the HTTPS traffic (and I'll need to install the CA on all the user machines).

    My question is: is it possible to forward the stripped HTTP traffic to something like Security Onion for storage and analysis?

Log in to reply