We have installed a proxy inbetween host and internet. when i make a request google.com and if i see the communication in wireshark, i can just see the communication to proxy and reply from proxy, since proxy makes the actual request and reply to host. in this case, how do we see the actual communication even if proxy is in intermediate, like communication from host to google.com in wireshark? asked 02 Nov '13, 21:45  mythbuster edited 15 Sep '14, 22:37  Guy Harris ♦♦ |
One Answer:
Well, the traffic between your host and the proxy will be actual traffic as is it seen on the network. You can not see the traffic on "the other side of the proxy" from your own host. If you want to see how the proxy is requesting the information from the website, you need to capture on the public side of the proxy. This can be done either on the proxy itself (choose the internet facing network interface) or you can mirror the traffic on the switch that connects the public interface of the proxy to the rest of the network. answered 03 Nov '13, 03:07  SYN-bit ♦♦ |
