Hi,
as SSL sites are used more and more - how do you solve to manage the access to them?
For HTTP sites the transparent proxy is working. Any plans to integrate something into MikroTik?
thanks,
Ben
Currently, can’t do https proxy with Mikrotik transparent proxy. One option I know is squid + ssl bump.
Anything they can integrate will have only limited use anyway. Sure, you can do MITM and see what’s inside encrypted https connections. But only when all users trust your “fake” CA, so that’s possible only when you have all client devices under your control. And even then it won’t work well, when sites use key pinning.