Squid simply establishes a TCP connection to the destination serverĪnd responds to the client with an HTTP 200 response to indicate the The only way to do it is enabling HTTPS interception, which is not easy to setup without dedicated security solutions, and which can be deemed an illegal action in several settings/countries.įor an introduction to the theme, see Intercepting HTTPS Traffic Using the Squid Proxy Service in pfSenseīy default Squid proxy servers cannot monitor encrypted HTTPS traffic. So, it is not possible to log or block out visited URLs in those cases. Squid only knows what sites are being visited on such case. Thus the traffic only goes tunelled through Squid, and you cannot have an idea of what URLs are visited. The thing is HTTPS traffic is encrypted by definition.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |