I have tricky situation. With policy routing on cisco I forward all client traffic to linux box and after that from box on gateway router. Practically I'm mitm on layer 3.
I wish to grab passwords from ssl traffic. Sslstrip work only if before ssl have http traffic like on facebook.com. Direct access to https traffic bay pass sslstrip becouse sslstrip listen on port 80. I can't sign sslsniff with certificates because firefox on client side "make problems" with invalid certification.
Can I on some way configure ettercap to listen traffic on eth0 interface or some another tool to sniff ssl pass?