I always face challenge using Web filtering On Https Without configuring proxy.
I seen in Fortigate or other hardware firewalls., it just works without configuring any additional on user Side.
any thing similar here…?
Yes, see the following section of the manual:
http://docs.nethserver.org/en/latest/web_proxy.html#ssl-proxy
As per the document… we have to configure certificate in all machines… even may be proxy also…
without doing that can we block or monitor Https traffic?
Unfortunately not ;-(
be sure you can intercept/decode https traffic… in many countries it’s illegal…
just block https connect to the sites you want to block (social networks first of all)
my 2c