As an example. A user can leak data through webmail, upload to certain sites, forums and etc. When the user leak data, we want the proxy sent to DLP. Based on DLP filtering/ content checking, if matched it will block inside DLP. While if the user downloads the information that contain the content matching inside DLP, we want to bypass and dont want the traffic downloads being sent to DLP. Is it my configuration correct or not since I dont have DLP for my lab test?