Hi there all,
I have a simple explicit proxy setup in which I didn't exclude (yet) a Guacamole host used for Remote Access (internal/external).
While connecting to that system through the OPNsense/Squid setup, I could log on with no issue although any Remote Access connection wouldn't work.
These are WebSocket based, is this possible through Squid? Have I missed some config options?
I have for now updated my wpad.dat with a DIRECT directive to that host and all is fine, just more for my knowledge.
Let me know,
Kind regards,
m.
Found a plausible explanation / need to test without SSL Bump'in :
https://stackoverflow.com/questions/45084436/squid3-proxy-server-ssl-bump-blocking-web-socket-connections (https://stackoverflow.com/questions/45084436/squid3-proxy-server-ssl-bump-blocking-web-socket-connections)
----
Squid doesn't support websocket natively, only through CONNECT tunnel, which your client has to be aware of -- which it won't be if you are MITMing connections.
----
EDIT: just tested, without SSL Bump, WebSocket is working all fine..