Am 24.11.2015 14:17:41, schrieb Lampshade: > Ok, I know that relayd can decrypt traffic, then log, then encrypt. The thing is that I want to > send decrypted traffic to another process (privoxy), and then re-encrypt it. > I have also problem with Reyk's config because I can not divert outgoing traffic using pf. > I have tried with rdr-to and nat-to, but it removes destination IP address in packets. > I want to intercept and alter traffic on the same box that I run Firefox. > Is this possible using pf and relayd or I must use something else? >
With a little bit pf-magic this works like this: pass out log on $ext_if proto tcp to any port 443 route-to lo0 pass out log on $ext_if proto tcp to any port 443 user _relayd pass in log on lo0 proto tcp to any port 443 divert-to 127.0.0.1 port 8443
