diff options
Diffstat (limited to 'doc-src/features/passthrough.html')
| -rw-r--r-- | doc-src/features/passthrough.html | 16 |
1 files changed, 8 insertions, 8 deletions
diff --git a/doc-src/features/passthrough.html b/doc-src/features/passthrough.html index 17cc0259..101a337a 100644 --- a/doc-src/features/passthrough.html +++ b/doc-src/features/passthrough.html @@ -18,18 +18,18 @@ If you want to ignore traffic from mitmproxy's processing because of large respo <th width="20%">command-line</th> <td>--ignore regex</td> </tr> <tr> - <th>mitmproxy shortcut</th> <td><b>I</b></td> + <th>mitmproxy shortcut</th> <td><b>o</b> then <b>I</b></td> </tr> </tbody> </table> mitmproxy allows you to specify a regex which is matched against a <code>host:port</code> string (e.g. "example.com:443") -to determine hosts that should be excluded. +to determine hosts that should be excluded. There are two important quirks to consider: -- **In transparent mode, the ignore pattern is matched against the IP.** While we usually infer the hostname from the +- **In transparent mode, the ignore pattern is matched against the IP.** While we usually infer the hostname from the Host header if the --host argument is passed to mitmproxy, we do not have access to this information before the SSL handshake. - In regular mode, explicit HTTP requests are never ignored.[^explicithttp] The ignore pattern is applied on CONNECT @@ -40,9 +40,9 @@ There are two important quirks to consider: If you just want to ignore one specific domain, there's usually a bulletproof method to do so: -1. Run mitmproxy or mitmdump in verbose mode (-v) and observe the host:port information in the serverconnect +1. Run mitmproxy or mitmdump in verbose mode (-v) and observe the host:port information in the serverconnect messages. mitmproxy will filter on these. -2. Take the host:port string, surround it with ^ and $, escape all dots (. becomes \\.) +2. Take the host:port string, surround it with ^ and $, escape all dots (. becomes \\.) and use this as your ignore pattern: <pre class="terminal"> @@ -60,16 +60,16 @@ $ mitmproxy --ignore ^example\.com:443$ Here are some other examples for ignore patterns: <pre> # Exempt traffic from the iOS App Store (the regex is lax, but usually just works): ---ignore apple.com:443 +--ignore apple.com:443 # "Correct" version without false-positives: --ignore '^(.+\.)?apple\.com:443$' - + # Ignore example.com, but not its subdomains: --ignore '^example.com:' # Ignore everything but example.com and mitmproxy.org: --ignore '^(?!example\.com)(?!mitmproxy\.org)' - + # Transparent mode: --ignore 17\.178\.96\.59:443 # IP address range: |