i have iptables configured to redirect outbound HTTP to HAProxy, and
then load balance to a couple of squid instances. the below works well:
backend tproxy
acl https ssl_fc
http-request set-uri http://%[req.hdr(Host)]%[path]?%[query]
unless https
...
i have tried to perform HTTPS interception using the below, in addition
to the redirect of HTTPS traffic to the HAProxy VIP:
http-request set-method CONNECT if https
http-request set-uri https://%[req.hdr(Host)]%[path]?%[query]
if https
this does not seem to work as expected. where can i find more info on
performing HTTPS interception, for transparent proxying? any help would
be appreciated.
thanks,
brendan