This is our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

I would like to decrypt TLS traffic. Normally I know how to do this, but in this case I do not have a direct connection to the server. Instead, I need to access the server over a web proxy.

My proxy listens on port 8080. My client performs an HTTP CONNECT to the proxy to connect with port 443 of my server. After that, the SSL traffic between client and server is tunneled.

Diffie-Hellman is deactivated; the Cipher Suite is TLS_RSA_WITH_AES_256_CBC_SHA. I have the Certificate with Private Key in the RSA keys list. In this list, I have the IP address and port of the proxy.

However, Wireshark doesn't decrypt the traffic and I don't know why. Is it possible to decrypt traffic with this setup?

asked 31 May '17, 05:09

ChristophAlbert's gravatar image

ChristophAlbert
6112
accept rate: 0%

Be the first one to answer this question!
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×75
×22

question asked: 31 May '17, 05:09

question was seen: 2,550 times

last updated: 31 May '17, 05:09

p​o​w​e​r​e​d by O​S​Q​A