Community discussions

MikroTik App
Topic Author
Posts: 41
Joined: Fri Feb 04, 2005 11:11 am

redirect Youtube to non SSL

Tue Apr 17, 2018 4:12 pm

Hi all,

Is it possible to redirect all customers to non SSL-Connections to youtube? If this would be possible caching would be much more easier! Maybe some one has an idea or solved the problem. thanks in advance

with best regards
Frequent Visitor
Frequent Visitor
Posts: 70
Joined: Thu Oct 26, 2017 11:18 pm

Re: redirect Youtube to non SSL

Tue Apr 17, 2018 9:02 pm

This isn't ethical, you will break everyone in your network for MitM attacks and too, break Google hard work at cryptography.
Forum Guru
Forum Guru
Posts: 5612
Joined: Mon Apr 20, 2009 9:11 pm

Re: redirect Youtube to non SSL

Tue Apr 17, 2018 10:05 pm

The answer is "no". Youtube uses HSTS, so any browser connected to Youtube in last 365 days will automatically use HTTPS. And once browser decides to uses HTTPS, you as the middle man can't change its decision. Even the target server can't tell it to use HTTP when HSTS is used.

In theory, you could catch HTTP requests to Youtube, direct them to your proxy and filter out HSTS and redirects to HTTPS from answers. But it would only work for new devices that never connected to Youtube before and that won't ever leave your network, because once they do, next time they would require HTTPS. So in practice, it's "no" again.
People who quote full posts should be spanked with ethernet cable. Some exceptions for multi-topic threads may apply. Not intended as incentive for masochists.
Long time Member
Long time Member
Posts: 569
Joined: Thu Feb 04, 2016 11:42 am
Location: Scotland

Re: redirect Youtube to non SSL

Wed Apr 18, 2018 7:27 pm

of the aim of this excercess is just catching, using TLS host option in firewall filter rule, it will get HTTPS ... all/Filter

Who is online

Users browsing this forum: bpwl, eddieb, jvanhambelgium, mohkhalifa, sindy and 98 guests