Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    ClamAV -> Squid HTTPS/SSL Traffic ?

    Cache/Proxy
    2
    4
    1.8k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • E
      epionier
      last edited by

      Hello,

      I run Squid with ClamAV enabled on pfSense 2.3. I assume that HTTPS/SSL traffic content is not scanned with ClamAV due to the system of encryption.

      But I cannot find an answer if HTTPS/SSL traffic is checked with ClamAV when the option "SSL Man In the Middle Filtering" is enabled. Theoratically it should now be possible to scan the content before encrypting it to the client again but is this really the case or just my guess?

      1 Reply Last reply Reply Quote 0
      • A
        AR15USR
        last edited by

        Im not an expert, but you have to setup wpad or install on each browser a cert from pfsense. It will work after that.

        2.6.0-RELEASE

        1 Reply Last reply Reply Quote 0
        • E
          epionier
          last edited by

          @AR15USR

          How to enable HTTPS Filtering and get it working is clear to me. My question is if in this case the content is scanned with ClamAV compared to non-HTTPS Filtering (passing encrypted content through).

          1 Reply Last reply Reply Quote 0
          • A
            AR15USR
            last edited by

            As I understand it, yes. But again I am no expert.

            This is actually the next thing I am delving into myself…

            2.6.0-RELEASE

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.