<div dir="ltr"><div class="gmail_default" style="font-family:verdana,sans-serif;font-size:x-small"><div class="gmail_default">Following is my squid config :</div><div class="gmail_default"><br></div><div class="gmail_default">http_port 3129 intercept<br>https_port 3131 intercept ssl-bump cert=/etc/ray/certificates/myCA.pem \<br>    generate-host-certificates=off dynamic_cert_mem_cache_size=2MB<br>## For Captive Portal<br>http_port 3132 intercept<br>https_port 3133 intercept ssl-bump cert=/etc/ray/certificates/myCA.pem \<br>    generate-host-certificates=off dynamic_cert_mem_cache_size=1MB<br><br>#sslcrtd_program /usr/lib/squid/ssl_crtd -s /var/lib/ssl_db -M 4MB<br>#sslcrtd_children 5<br><br># TLS/SSL bumping definitions<br>acl tls_s1_connect at_step SslBump1<br>acl tls_s2_client_hello at_step SslBump2<br>acl tls_s3_server_hello at_step SslBump3<br><br># TLS/SSL bumping steps<br>ssl_bump peek tls_s1_connect all # peek at TLS/SSL connect data<br>ssl_bump splice all # splice: no active bumping<br><br>pinger_enable off<br>digest_generation off<br>netdb_filename none<br>ipcache_size 128<br>fqdncache_size 128<br>via off<br>forwarded_for transparent<br>httpd_suppress_version_string on<br>cache deny all<br>cache_mem 0 MB<br>memory_pools off<br>shutdown_lifetime 3 seconds<br><br>#logfile_daemon /dev/null<br>access_log none<br><br>#acl good_url dstdomain .<a href="http://yahoo.com/" target="_blank">yahoo.com</a><br>http_access allow all<br><br>url_rewrite_program /tmp/squid/urlcat<br>url_rewrite_children 3 startup=1 idle=1 concurrency=10<br>#url_rewrite_access allow all<br>#url_rewrite_extras "%>a/%>A %un %>rm bump_mode=%ssl::bump_mode sni=\"%ssl::>sni\" referer=\"%{Referer}>h\""<br></div><div class="gmail_default">url_rewrite_extras "%>a %lp %ssl::>sni"<br></div><div class="gmail_default"><br></div><div class="gmail_default">----------------------------------------------------------------------------------------------</div><div class="gmail_default"><br></div><div class="gmail_default">I am redirecting port 80 and port 443 traffic to squid..</div><div class="gmail_default"><br></div><div class="gmail_default">I went through some blogs and forums which suggest that Whatsapp seems to send non SSL traffic on port 443 (<a href="https://developers.facebook.com/docs/whatsapp/guides/network-requirements/" target="_blank" style="font-family:Arial,Helvetica,sans-serif;font-size:small">https://developers.facebook.com/docs/whatsapp/guides/network-requirements/</a>)</div><div style="font-family:Arial,Helvetica,sans-serif;font-size:small"><div dir="ltr" class="gmail-m_7545655570154615738gmail_signature"><div dir="ltr"><br></div><div dir="ltr"><div class="gmail_default" style="font-family:verdana,sans-serif;font-size:x-small">And since I am running in intercept mode, it seems to terminate non-SSL traffic as well..</div><div class="gmail_default" style="font-family:verdana,sans-serif;font-size:x-small"><br></div><div class="gmail_default" style="font-family:verdana,sans-serif;font-size:x-small">Could someone kindly suggest how to bypass this..</div></div></div></div></div><div><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr">--<div>Thank You</div><div>Chirayu Patel</div><div>Truecom Telesoft </div><div>+91 8758484287</div><div><br></div><div><br></div></div></div></div></div>