Looks like this requires me to redirect all traffic through a proxy server. This... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

heinrichhartman on May 30, 2018 | parent | context | favorite | on: Tcpdump Examples

Looks like this requires me to redirect all traffic through a proxy server. This sounds very different from what I want to do.

I don't want to change the data path in any way. I just want to listen in.

chatmasta on May 30, 2018 [–]

If you've already terminated SSL, you can do this easily by using iptables nflog rule to duplicate traffic and send it to mitmproxy. Or you can setup a transparent proxy (but sounds like that violates your requirement). Either way, if SSL is not terminated you're not going to be able to do much.

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact