-
-
Notifications
You must be signed in to change notification settings - Fork 715
HelpAddonsSniTerminatorSniTerminator
rbran edited this page Nov 25, 2016
·
3 revisions
SNI Terminator allows you to use ZAP as a transparent HTTPS proxy for clients which support SNI.
Since ZAP already works pretty well as a transparent HTTP proxy, this allows you to set up a testing LANs (or VMs) where all HTTP and HTTPS traffic is proxied regardless of software settings.
For example, if you have a Linux machine you use for testing, you can do something like the following to forward all HTTP and HTTPS traffic to your ZAP instance running on 192.168.0.14:
iptables -t nat -A OUTPUT -p tcp --dport 443 -j DNAT --to-destination 192.168.0.14:8443
iptables -t nat -A OUTPUT -p tcp --dport 80 -j DNAT --to-destination 192.168.0.14:8080