Hi there,
is there a posibilty to run a transparent Https-Proxy but exclude some IPs in the local network so they can "talk" to the internet without the proxy?
At the moment we are running a Lancom / R&S UTM Firewall. I want to change and use an OPNSense. With the R&S-Firewall it is possible to configure an alias and give https-permisstion to the WAN-interface without using the proxy.
I found till now no possibility to do the same with the OPNSense. I have for example a small "black-box"-Access-point that is used to transfer the results of some blood-samples to the server. Unfortunately it is not possible to add the certificate to the box and "whitelisting" the url was not a solution for a propper work.
If anybody has an idea, I would be very happy :-)
Thanks.
You can use a port forwarding rule for exclusion.