Web Proxy Transparent HTTPS

Hi All,

Hope everyone is doing well. So the issue that I am having is. I have got vyos web proxy running in transparent. My issue is that by default, you can’t do HTTPS traffic
in transparent mode. I have been able to find work around online. But the fix is for installation on standard linux server systems.

However I would like to get this working without changing config files and do it using vyos the way it was built.

I am using DNAT rules to accomplish the transparent mode.

eth2 10.0.0.0/24 range
eth3 192.168.10.0/24 range

nat {
destination {
rule 10 {
description “Port 80”
destination {
address 0.0.0.0/0
port 80
}
inbound-interface eth3
log enable
protocol tcp
translation {
address 10.0.0.50
port 3128
}
}
rule 20 {
description “Port 443”
destination {
address 0.0.0.0/0
port 443
}
inbound-interface eth3
log enable
protocol tcp
translation {
address 10.0.0.50
port 3128
}
}

Hope the config can help others and look forward to any advice and help.

Hi,

I’m try to replicate your configuration but I’ve not been able. In your configuration address 10.0.0.50 is the VyOS eth2 address?
Thanks