SSLproxy
SSLproxy copied to clipboard
sonertari
Transparent SSL/TLS proxy for decrypting and diverting network traffic to other programs, such as UTM services, for deep SSL inspection
Convert values between host and network byte order.
I have filter rule `Block from ip * to ip * log *` and while traffic has been blocked i don't see that in logs. Below i send debug log...
Hello, i searching information about set own page for blocked request and i don't see that function. Do you have plans for implement that ?
Does SSLproxy open a different connection to divert program for decrypted packets that are on the response path from the downstream https server? How do I identify packet direction (to_server...
I added a few URLs in the passthrough mode. I am noticing that when there is more traffic on the passthrough sites, the open fd count for SSLProxy process keep...
Just duplicating my previous question/problem report. Getting empty response for ru/uk.wikipedia.org ``` SNI peek: [uk.wikipedia.org] [complete], fd=44 Connecting to [198.35.26.96]:443 ===> Original server certificate: Subject DN: /CN=*.wikipedia.org Common Names: *.wikipedia.org/*.m.mediawiki.org/*.m.wikibooks.org/*.m.wikidata.org/*.m.wikimedia.org/*.m.wikinews.org/*.m.wikipedia.org/*.m.wikiquote.org/*.m.wikisource.org/*.m.wikiversity.org/*.m.wikivoyage.org/*.m.wiktionary.org/*.mediawiki.org/*.planet.wikimedia.org/*.wikibooks.org/*.wikidata.org/*.wikimedia.org/*.wikimediafoundation.org/*.wikinews.org/*.wikipedia.org/*.wikiquote.org/*.wikisource.org/*.wikiversity.org/*.wikivoyage.org/*.wiktionary.org/*.wmfusercontent.org/mediawiki.org/w.wiki/wikibooks.org/wikidata.org/wikimedia.org/wikimediafoundation.org/wikinews.org/wikipedia.org/wikiquote.org/wikisource.org/wikiversity.org/wikivoyage.org/wiktionary.org/wmfusercontent.org...
Trying to keep my http headers as clean as possible, but always can see `sslproxy` header, finally just disabled it in the code: ``` +++ src/protohttp.c @@ -612,11 +612,13 @@...
Hello, is it possible to make suricata-ids read the sslproxy header, to identify the source and destination correctly? Best regards; Primmus
I'm exploring if this will work for my application. Actually, I'm hoping to use two instances of SSLproxy in the following manner: Server A is my HTTPS server with my...
Hello, I have the following setup that works: 10.2.0.0 (Ubuntu Host) 10.24.0.28 (SSLProxy) 10.24.0.1 PfSense FW 192.168.178.1 FritzBox Router/Modem (Outside physical Server) actual WAN (10.0.0.0/8 is one network where everyone...
