0.0 / 16 acl localnet src fc00 :: / 7 acl localnet src fe80 :: / 10 acl SSL_ports port 443 acl Safe_ports port 80 acl Safe_ports port 21 acl Safe_ports port 443 acl Safe_ports port 70 acl Safe_ports port 210 acl Safe_ports port 1025 - 65535 acl Safe_ports port 280 acl Safe_ports port 488 acl Safe_ports port 591 acl Safe_ports port 777 acl CONNECT method CONNECT http_access allow manager localhost http_access deny manager http_access deny ! Safe_ports http_access deny CONNECT ! SSL_ports http_access allow localnet http_access allow localhost # allow traffic from localhost # to allow other client IP, set them up above http_access deny all # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS # cache_effective_user proxy cache_effective_group proxy # this work for both http and https traffic http_port 3128 ssl - bump generate - host - certificates = on \ In addition to the Dockerfile, there are 5 more files that are important. 0 - dev wget - y WORKDIR / tmp RUN wget http : // org / Versions / v3 / 3.5 / squid -$ / usr / lib / squid / ssl_crtd EXPOSE 3128 / tcp SQUID_USER = proxy RUN apt - get update RUN apt - get install build - essential openssl libssl1. The Dockerfile is created and the content is as followed.įROM ubuntu : 18.04 ENV SQUID_VERSION = 3.5. Squid dockerĪ popular proxy software, link. This container can later be used with an ICAP service to perform network traffic filtering in the future. In this project, we will explorer setting up a non-transparent proxy server using squid and containerize it into a docker.
However, in order to achieve this, server's CA certificate must be installed and trusted as a root certificate on client's machine. It can relay HTTPS traffic as a man-in-the-middle proxy by forging its own SSL certificate. Only HTTP traffic can be monitored.Ī non-transparent proxy on the other hand, provides a much more powerful and flexible proxying service. The down side of a transparent proxy is that it provides limited function to perform network traffic monitoring and filtering.
It allows quick access to the web for everyone without configuration from client side. Transparent proxy server vs non-transparent proxy serverīoth types proxy servers are able to relay traffic from client machine. The end product should be able to sniff both HTTP and HTTPS traffic. We are looking to create a non-transparent proxy server using Squid for networking sniffing.
0 kommentar(er)
