cancel
Showing results for 
Search instead for 
Did you mean: 
anas.ismail
Level 9

HTTPS URLs are bypassing the policy

hello all,

I am facing a problem with the HTTPS websites, the HTTPS websites are bypassing the policy, when i am browsing to http websites the policy is being applied but when browsing to https websites not even a log for that websites is being logged ?!

I cant enable the content inspection in the SSL scanner because we cant distribute the certificate to all computers!! what I know about https traffic that the URL is sent without any encryption just the content!!

any help please??! it is starting remind me with the ISA

Thanks in advance.

Anas 

0 Kudos
3 Replies
feickholt
Level 10

Re: HTTPS URLs are bypassing the policy

As long as you don't enable content inspection you can only analyze the url.host part of the url.

Using this property you can filter and define rules for bypassing the policy.

The path and file part is not avaible for HTTPS without content inspection.

Frank

0 Kudos
anas.ismail
Level 9

Re: HTTPS URLs are bypassing the policy

thank you Frank,

actually, i just need to analyze the URL.host and URL.category i dont need to analyze the content, i've enabling the Set Client Context to analyze the https URLs, but it didnt work, the https traffic is bypassing the policy.

Anas

0 Kudos
feickholt
Level 10

Re: HTTPS URLs are bypassing the policy

You need "Set Client context" only for Blockpages (if needed)

You may try rule trace (Troubleshooting, Rule tracing central) and check why your rule does not work. Maybe your request does not trigger the rule due to a stop cycle somewhere in the beginning of your ruleset.

0 Kudos