In this mode Squid operates completely in the background and requires no configuration on client side. This mode only works with HTTP (port 80), the transparency is technically regulated by the firewall that intercepts any request to the web through the proxy and redirects the service (REDIRECT-Target).
This is why using transparent mode does not make sense if your clients query services via HTTPS. In addition, IPFire does not support intercepting HTTPS connections for security purposes, which is why it cannot inject the redirection page into blocked HTTPS queries.
I’ve tried everything (Proxy no transparent, proxy settings in firefox, sslbump etc …)
IPfire does not display a notification page at https.
if you would have read my post closely enough, you might have seen that IPFire cannot inject a notification page for HTTPS sites without intercepting TLS - which we do not support for security reasons. More information is available in this paper: