Block access to https pages

younesdd · 31 March 2025 10:26

I’m a beginner and I want to see if someone can give me instructions on how to block access to https pages using a transparent proxy, since it only blocks http pages.

tratru · 31 March 2025 11:03

hello
you have to watch this guide

younesdd · 31 March 2025 12:00

Thank you very much, by any chance do you know why it works in Filezilla but not in Chrome?

bbitsch · 31 March 2025 13:02

WPAD is a service from the DHCP server for the clients.
They can use the information, but must not.
Therefore there are possibilities to redirect requests to the IPFire gateway.

tratru · 31 March 2025 13:16

I’m not an expert in this, but I think it’s due to the possibility of customizing the browser
if I’m wrong, please correct me

bbitsch · 31 March 2025 13:21

That is true.
But

it depends whether the browser has an error free implementation
the client seen by IPFire is the composition of computer/browser/user

younesdd · 31 March 2025 16:30

Okay, thanks for clarify. So, could WPAD be bypassed if the browser’s settings allow it?
And finally, could someone clarify my question: why, when I configure it manually, it blocks requests in Firefox, but when I configure it from my computer in Chrome, it tells me I have no internet? Thanks!

bbitsch · 31 March 2025 16:34

Depends on your configurations.

mumpitz · 1 April 2025 01:18

if you look the proxy settings you will find allowed standard ports and allowed SSL ports. If done, you should deny every connections from the networkt the proxy is in to red (internet).
So all way out have to go throw the set proxy port. And if you use a kind of user management for proxy, you will have a great barrier with your proxy as controlled gateway for all users in the protected network..

hvacguy · 1 April 2025 01:31

Some of my favorite reads.