Successfully set up a transparent proxy where all HTTP traffic from PC's in a LAN is forced to go through the proxy running in one PC, whereby the PC is offering protection with privoxy and anonymity with ultrasurf as a parent proxy.
But the same with HTTPS does not work, apparently because:
A primary purpose of HTTPS is to prevent "man-in-the-middle", which is exactly what a transparent proxy like this is trying to do. To do so, you'd need to have a certificate valid for everything or a system to generate certificates on the fly. In either case you're going to need an internal CA (no already-trusted external one will give you a cert for anything you don't control) and to install that root as trusted in all systems behind the proxy.
How do I do these?