How to solve the bug Web proxy with android devices?

[cookiemonster]

what is your requirement novel, what do you want to achieve?

[novel]

what is your requirement novel, what do you want to achieve?

Hello,

I had have another firewall with layer 7 enabled. The other firewall had antivirus could  inspects  http/https sites with certfitcation file (pem extension) that you could imported it on firefox or android devices and ipad. It had have Application Control that allow and block any host or ip ...from bittorent,facebook,google.....I had choices layer 7.

Now I want to use OPNsense. then I enabled web proxy. Web proxy on my laptop works fine so far, but I disabled it because I could not install certificate on my ipad.Two android devices I installed certificate from opnsense sucessfully but I don't have internet at all. <-- This problem I saw it another post 2018

I used for couple days zenarmor then I uninstalled. It useless on free edition, and It is too heavy , cpu fan works over 60% . When I used the other firewall with the same pc I didn't have any hardware problems.


Please tell me, is web proxy outdated? Can I use it on 2023? Is there alternative that I have layer 7 options?

[cookiemonster]

> The other firewall had antivirus could  inspects  http/https sites with certfitcation file (pem extension) that you could imported it on firefox or android devices and ipad.
> Web proxy on my laptop works fine so far, but I disabled it because I could not install certificate on my ipad.Two android devices I installed certificate from opnsense sucessfully but I don't have internet at all.
So you want to inspect encrypted https traffic using your own certificates. It seems then you need to diagnose the installation failing on the ipad. We can't tell why that is on a forum. You need to diagnose it and bring details.
Similarly for the Android phones, you need to diagnose it. We can't put our hands on your handsets :)
But why do you want to inspect encrypted traffic? If to block host or ip, indeed blocking the services might be an option, like AdguardHome or Zenarmor. They don't solve the problem of inspecting TLS (https) but might be suitable with adequate processing power on the appliance.

[novel]

> The other firewall had antivirus could  inspects  http/https sites with certfitcation file (pem extension) that you could imported it on firefox or android devices and ipad.
> Web proxy on my laptop works fine so far, but I disabled it because I could not install certificate on my ipad.Two android devices I installed certificate from opnsense sucessfully but I don't have internet at all.
So you want to inspect encrypted https traffic using your own certificates. It seems then you need to diagnose the installation failing on the ipad. We can't tell why that is on a forum. You need to diagnose it and bring details.
Similarly for the Android phones, you need to diagnose it. We can't put our hands on your handsets :)
But why do you want to inspect encrypted traffic? If to block host or ip, indeed blocking the services might be an option, like AdguardHome or Zenarmor. They don't solve the problem of inspecting TLS (https) but might be suitable with adequate processing power on the appliance.

All  seriously firewalls inspect http/https traffic. This is fact! So, certificate on androids devices have been installed successfully , then I followed all details.

https://forum.opnsense.org/index.php?topic=7664.0
https://github.com/opnsense/core/issues/2311



So is web proxy outdated or not? Zenarmor I said is useless on free edition and too heavy. In the past I tried  Adguard withj some problems but I will installed again.

So the only alternative choice from web proxy , is zenarmor and adguard?