I’m currently working on a research project. Therefor I need to intercept the HTTPS traffic between client and server. I’m trying several things out, but I’m not sure if HAProxy is the right choice for this.
So, for example, when someone browses to example.com, I want the proxy (HAProxy?) to establish a connection with the server example.com and a connection with the client. Based on the server certificate, it needs to sign a new certificate for the client with my own Root CA. So that way, the proxy can decrypt all traffic going back and forward. The clients need to be able to do their internet browsing as they are used to, so requests need to be forwarded to the original destination.
So the proxy server decrypts the traffic where the traffic comes in and let the other end re-encrypt it before going out to the original destination.
Below my current config. I can’t seem to find out if it’s possible with HAProxy and how.
This is what I see in my logs:
Please reply if you can help me out (or perhaps tell me its impossible). I can give more information on request.
Thanks in advance.