Skip to content

HelpUiDialogsOptionsLocalproxy

thc202 edited this page Apr 4, 2017 · 7 revisions

Options Local Proxy screen

The Options Connection screen allows you to configure the address and port on which ZAP accepts incoming connections. It is this address and port that you must configure your browser to use as a proxy.

Behind NAT

Indicates that the Local Proxy (ZAP) is behind NAT. When selected ZAP will attempt to determine the public IP address, to properly detect and handle requests with the public IP address (for example, to be served by the ZAP API).

Note: This option is only supported when ZAP is running in an AWS EC2 instance. ZAP will obtain the public IP address from AWS EC2 instance's metadata. ZAP should be started with this option enabled if access to the API, through the public IP address, is required:

zap.sh -daemon -port 8080 -host 0.0.0.0 -config proxy.behindnat=true

Also, the API needs to be configured to accept external IP addresses (i.e. the IP address from where ZAP is being accessed).

Remove Unsupported Encodings

Allows the proxy to remove unsupported encodings from the "Accept-Encoding" request-header field, so no (unsupported) encoding transformations are done to the response. This option should be always enabled unless when testing the encoding transformations. The messages encoded with unsupported encodings will not be correctly scanned (either by passive and active scanners).

Security Protocols

Allows to choose the SSL/TLS versions enabled for incoming connections (for example, from browsers). At least one version must be enabled, versions unsupported by the JRE will be unselected and disabled.

See also

     UI Overview for an overview of the user interface
     Options dialogs for details of the other Options dialog screens
Clone this wiki locally