Capture Traffic from iOS Device

Configure Fiddler

  1. Open Fiddler and stop capturing.

  2. Open Tools > Options > HTTPS and disable Capturing HTTPS Connects.

  3. Close Fiddler and install BouncyCastle (CertMaker.dll) from here. – this will add CertMaker.dll in your Fiddler installation, and it will change the way certificates are generated. With this option, Fiddler will use only one root certificate and will not generate intermediate certificates for each option.

  4. After installation is complete, open Fiddler, open Tools > Options > HTTPS menu use Actions > Reset all certificates option. This will remove all previously used certificates and will trust the new one.

  5. After agreeing with all system dialogs, enable Capturing (Tools > Options > HTTPS and check Capturing HTTPS Connects) and decryption of HTTPS traffic ((Tools > Options > HTTPS and check Decrypt HTTPS traffic)).

  6. Open Tools > Options > Connections.

  7. Click the checkbox for Allow remote computers to connect.

    ![Allow remote computers to connect][1]

  8. Restart Fiddler.

  9. Ensure your firewall allows incoming connections to the Fiddler process and that it's not blocking all incoming connections, including those in the list of allowed apps.

  10. Hover over the Online indicator at the Fiddler toolbar's far-right to display the IP addresses assigned to Fiddler's machine. Use this address on your iOS device (see the 5th step in the iOS device setup steps below).

    ![Online Tooltip][2]

  11. Verify client iOS device can reach Fiddler by navigating in the browser to http://FiddlerMachineIP:8888. This address should return the Fiddler Echo Service page.

  12. For iPhone: Disable the 3g/4g connection.

Set the iOS Device Proxy

  1. On the iOS device open Settings > General > Profiles and remove all DO_NOT_TRUST_FiddlerRoot profiles. You must remove them (not disabling them).

  2. Go to Settings > WiFi on your iOS device.

  3. Find your current network and click the i icon.

  4. Scroll to the bottom and choose Manual in the Configure Proxy option.

  5. Type your Fiddler machine IP address in the Server field.

  6. Type the Fiddler Everywhere listening port (8888 by default) in the Port field and finally tap on Save.

    With the current setup, you should be able to capture non-secure HTTP traffic. However, if you try to open any HTTPS website, you'll get the This site's security certificate is not trusted! error. To fix this, proceed with the steps that follow below.

  7. Open a browser on the iOS device and type the Fiddler echo service address: http://ipv4.fiddler:8888

  8. Click on the Fiddler root certificate link to download it.

  9. On your iOS device, open General and install the certificate via the Profile Downloaded. Note that this option will appear after the certificate is downloaded.

  10. (iOS 10.3+) Go to General > About > Certificate Trust Settings and enable full trust for the DO_NOT_TRUST_FiddlerRoot certificate. Note that you will see the DO_NOT_TRUST_FiddlerRoot certificate only after completing the previous step.

Uninstall FiddlerRoot Certificate

If you decide to uninstall the root certificate:

  1. Tap the Settings app.

  2. Tap General.

  3. Scroll to Profiles.

  4. Tap the DO_NOT_TRUST_FiddlerRoot* profile.

  5. Tap Remove.

In this article
Not finding the help you need? Improve this article