Chapter-21 : Intercepting HTTPS Traffic Using the Squid Proxy Service in pfSense| How To Cache HTTPS
Intercepting HTTPS Traffic Using the Squid Proxy Service in pfSense | How To Cache HTTPS On Squid
This is how I setup squid, ClamAV, and splicing for Windows Updates on pfSense. We setup SSL/MITM bumping and splicing for HTTPS traffic as well. You will need to install your certificate created in pfSense as a trusted root certification authority on all clients using the proxy and bumped connections.
Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. It reduces bandwidth and improves response times by caching and reusing frequently-requested web pages. Squid has extensive access controls and makes a great server accelerator. It runs on most available operating systems, including Windows and is licensed under the GNU GPL.
Squid is used by hundreds of Internet Providers world-wide to provide their users with the best possible web access. Squid optimises the data flow between client and server to improve performance and caches frequently-used content to save bandwidth. Squid can also route content requests to servers in a wide variety of ways to build cache server hierarchies which optimise network throughput.
Thousands of web-sites around the Internet use Squid to drastically increase their content delivery. Squid can reduce your server load and improve delivery speeds to clients. Squid can also be used to deliver content from around the world - copying only the content being used, rather than inefficiently copying everything. Finally, Squid's advanced content routing configuration allows you to build content clusters to route and load balance requests via a variety of web servers.
[The Squid systems] are currently running at a hit-rate of approximately 75%, effectively quadrupling the capacity of the Apache servers behind them. This is particularly noticeable when a large surge of traffic arrives directed to a particular page via a web link from another site, as the caching efficiency for that page will be nearly 100%
USE AT YOUR OWN RISK: The following procedures may be illegal in some countries. Follow all local laws and regulations for your area. I am not responsible for any issues or damage you may cause.
#AllAboutcomputerNetworks
#hindi
#pfsense
#SquidProxy
#Interceptinghttps
#Cachehttps
#SquidProxyOnPfSense
Below are custom options and refresh patterns that I used:
# My custom options in the SSL/MITM text box:
# Windows Update domains that should be spliced, not bumped
acl splice_it ssl::server_name .microsoft.com
acl splice_it ssl::server_name .windowsupdate.com
acl splice_it ssl::server_name .akamaitechnologies.com
acl splice_it ssl::server_name .akadns.net
acl step1 at_step SslBump1
ssl_bump peek step1
ssl_bump splice splice_it
ssl_bump bump all
# My custom refresh_options on the Local Cache tab
refresh_pattern -i windowsupdate.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
refresh_pattern -i microsoft.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
refresh_pattern -i windows.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
refresh_pattern -i microsoft.com.akadns.net/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
refresh_pattern -i deploy.akamaitechnologies.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
If you want to restrict (bypass) ip addresses of your local Network :-
acl splice_it ssl::server_name .microsoft.com
acl splice_it ssl::server_name .windowsupdate.com
acl splice_it ssl::server_name .akamaitechnologies.com
acl splice_it ssl::server_name .akadns.net
acl localnet src 10.0.0.0/8 #local network
acl localnet src 192.168.0.0/16 #local network
acl localnet src 172.16.0.0/12 #local network
acl localnet src 2.2.2.2/32 #just for example
acl step1 at_step SslBump1
ssl_bump peek step1
ssl_bump splice splice_it
ssl_bump splice localnet # splice one more time
ssl_bump bump all
Other Search:-
install squid proxy server
squid proxy server configuration in linux step by step
squid proxy server installation step by step
config squid proxy server on windows
windows squid proxy server
install squid proxy server on windows
squid proxy server configuration in linux centos 8
install squid proxy on linux
config squid proxy
squid proxy centos
install squid proxy on centos 8
bypassing squid proxy
squid reverse proxy
auth with squid
control user with squid
squid application proxy
user access authentication
squid web proxy
squid installation on linux
lightsquid on centos
install squod http proxy
monitoring squid with lightsquid
create user authentication in squid proxy server
server logs
अगर आप को यह विडियो पसंद आया तो कृपया लाइक करें और अगर आप कुछ कहना या पूछना चाहते है तो कृपया नीचे दिए गए कमेंट बॉक्स में लिखें धन्यवाद !
I Hope you enjoy/enjoyed the video.
If you have any questions or suggestions feel free to ask them in the comments section.
Видео Chapter-21 : Intercepting HTTPS Traffic Using the Squid Proxy Service in pfSense| How To Cache HTTPS канала All About Computer Networks
This is how I setup squid, ClamAV, and splicing for Windows Updates on pfSense. We setup SSL/MITM bumping and splicing for HTTPS traffic as well. You will need to install your certificate created in pfSense as a trusted root certification authority on all clients using the proxy and bumped connections.
Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. It reduces bandwidth and improves response times by caching and reusing frequently-requested web pages. Squid has extensive access controls and makes a great server accelerator. It runs on most available operating systems, including Windows and is licensed under the GNU GPL.
Squid is used by hundreds of Internet Providers world-wide to provide their users with the best possible web access. Squid optimises the data flow between client and server to improve performance and caches frequently-used content to save bandwidth. Squid can also route content requests to servers in a wide variety of ways to build cache server hierarchies which optimise network throughput.
Thousands of web-sites around the Internet use Squid to drastically increase their content delivery. Squid can reduce your server load and improve delivery speeds to clients. Squid can also be used to deliver content from around the world - copying only the content being used, rather than inefficiently copying everything. Finally, Squid's advanced content routing configuration allows you to build content clusters to route and load balance requests via a variety of web servers.
[The Squid systems] are currently running at a hit-rate of approximately 75%, effectively quadrupling the capacity of the Apache servers behind them. This is particularly noticeable when a large surge of traffic arrives directed to a particular page via a web link from another site, as the caching efficiency for that page will be nearly 100%
USE AT YOUR OWN RISK: The following procedures may be illegal in some countries. Follow all local laws and regulations for your area. I am not responsible for any issues or damage you may cause.
#AllAboutcomputerNetworks
#hindi
#pfsense
#SquidProxy
#Interceptinghttps
#Cachehttps
#SquidProxyOnPfSense
Below are custom options and refresh patterns that I used:
# My custom options in the SSL/MITM text box:
# Windows Update domains that should be spliced, not bumped
acl splice_it ssl::server_name .microsoft.com
acl splice_it ssl::server_name .windowsupdate.com
acl splice_it ssl::server_name .akamaitechnologies.com
acl splice_it ssl::server_name .akadns.net
acl step1 at_step SslBump1
ssl_bump peek step1
ssl_bump splice splice_it
ssl_bump bump all
# My custom refresh_options on the Local Cache tab
refresh_pattern -i windowsupdate.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
refresh_pattern -i microsoft.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
refresh_pattern -i windows.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
refresh_pattern -i microsoft.com.akadns.net/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
refresh_pattern -i deploy.akamaitechnologies.com/.*\.(cab|exe|ms[i|u|f|p]|[ap]sf|wm[v|a]|dat|zip|psf) 43200 80% 129600 reload-into-ims
If you want to restrict (bypass) ip addresses of your local Network :-
acl splice_it ssl::server_name .microsoft.com
acl splice_it ssl::server_name .windowsupdate.com
acl splice_it ssl::server_name .akamaitechnologies.com
acl splice_it ssl::server_name .akadns.net
acl localnet src 10.0.0.0/8 #local network
acl localnet src 192.168.0.0/16 #local network
acl localnet src 172.16.0.0/12 #local network
acl localnet src 2.2.2.2/32 #just for example
acl step1 at_step SslBump1
ssl_bump peek step1
ssl_bump splice splice_it
ssl_bump splice localnet # splice one more time
ssl_bump bump all
Other Search:-
install squid proxy server
squid proxy server configuration in linux step by step
squid proxy server installation step by step
config squid proxy server on windows
windows squid proxy server
install squid proxy server on windows
squid proxy server configuration in linux centos 8
install squid proxy on linux
config squid proxy
squid proxy centos
install squid proxy on centos 8
bypassing squid proxy
squid reverse proxy
auth with squid
control user with squid
squid application proxy
user access authentication
squid web proxy
squid installation on linux
lightsquid on centos
install squod http proxy
monitoring squid with lightsquid
create user authentication in squid proxy server
server logs
अगर आप को यह विडियो पसंद आया तो कृपया लाइक करें और अगर आप कुछ कहना या पूछना चाहते है तो कृपया नीचे दिए गए कमेंट बॉक्स में लिखें धन्यवाद !
I Hope you enjoy/enjoyed the video.
If you have any questions or suggestions feel free to ask them in the comments section.
Видео Chapter-21 : Intercepting HTTPS Traffic Using the Squid Proxy Service in pfSense| How To Cache HTTPS канала All About Computer Networks
Показать
Комментарии отсутствуют
Информация о видео
3 февраля 2022 г. 0:10:47
00:16:02
Другие видео канала
