0

I saw this answer from 10 years ago that's more or less about the same thing, except it involves HTTP rather than HTTPS: nginx: dump HTTP requests for debugging

Is there a way to dump the encrypted traffic through NGINX proxy_pass as plaintext? I tried tcpdump/Wireshark on port 443 but all it gave me was jumbled encrypted text.

A bit of context, the upstream server is a remote HTTPS Apache server so the NGINX instance works as a CDN.

If this is not possible with NGINX, is there another proxy server software that allows for this? Is the proxied traffic (temporarily) stored in plaintext on system memory?

I know there is a security concern but this is on my own server and I just want to know if and how this can be done. I'm also in the process of developing an anti-DoS system that filters requests.

BungyStudios
  • 1
  • 1
  • Yeah with tcp and wireshark you will need the key of your communication peer to do this. Do you only want to log all headers or all headers and the request body? You just need to specify your own log_format in nginx configuration and specify all variables you want to log. Do you really need the whole request or are you searching for some specific information? – Lorem ipsum Jul 24 '21 at 13:53
  • just a question, why do you encrypt the traffic if you want to break it? I mean you own the ssl keys so there is always the traffic in your hands. you could also use the log formatand adjust your needs – djdomi Jul 24 '21 at 15:53

0 Answers0