Mikrotik. How to redirect https traffic correctly?

A

Ashot Aslanyan2020-03-09 11:49:40

Mikrotik

Ashot Aslanyan, 2020-03-09 11:49:40

How to redirect https traffic correctly? I raise web-proxy and send ports 80, 443 to web-proxy using dst-nat, but redirection works only on sites where there is no SSL, in a word, everything that works on port 80 works, but if you type https in the browser: //qna.habr.com/question/new then the redirect will not work...
I want to implement a redirect page, with a negative balance.
Maybe it will be more efficient to use Layer7 for https redirect?
Or somehow, at least somehow, so that it only works ...

Reply

Answer the question

In order to leave comments, you need to log in

4 answer(s)

W

Wexter, 2020-03-09
@fellliche

No way, read at least what https is and what it is for

I

Internet, 2020-03-11
@geniuscomposervsevolodpus

No way. For SSL for that. And they developed it so that no one would proxy traffic.

Q

QuazarM, 2020-03-10
@QuazarM

Layer-7 firewall, label the packets, and then drive the labeled packets to where you need them.

F

Fwf, 2020-03-11
@Fwf

Try to dig towards captive portal push notification. But take heed. All this is at the discretion of the client. He himself is trying to determine if there is any barrier to the Internet and display a message to the client.
There is no other. Now all freeWIFI work this way and it seems to be successful, but only when connected to the network.
If you need to redirect during the session, then sorry dude - a bummer.