Web Proxy Transparent HTTPS

proxy
webproxy

#1

Hi All,

Hope everyone is doing well. So the issue that I am having is. I have got vyos web proxy running in transparent. My issue is that by default, you can’t do HTTPS traffic
in transparent mode. I have been able to find work around online. But the fix is for installation on standard linux server systems.

However I would like to get this working without changing config files and do it using vyos the way it was built.

I am using DNAT rules to accomplish the transparent mode.

eth2 10.0.0.0/24 range
eth3 192.168.10.0/24 range

nat {
destination {
rule 10 {
description “Port 80”
destination {
address 0.0.0.0/0
port 80
}
inbound-interface eth3
log enable
protocol tcp
translation {
address 10.0.0.50
port 3128
}
}
rule 20 {
description “Port 443”
destination {
address 0.0.0.0/0
port 443
}
inbound-interface eth3
log enable
protocol tcp
translation {
address 10.0.0.50
port 3128
}
}

Hope the config can help others and look forward to any advice and help.


#2

Hi,

I’m try to replicate your configuration but I’ve not been able. In your configuration address 10.0.0.50 is the VyOS eth2 address?
Thanks