Moved to Business > Web Gateway >Discussions > For a faster response
Is this HTTPS traffic? It's all dependent on how the client is making the request, if it's by IP then we need to whitelist the IP, but if the client make it by name we can whitelist by name.
It could be that the client isnt including SNI in the request (HTTPS considerations for transparent setups without SSL inspection - Server name indication and 'Fix Hostname' rule).
I believe some of the sites we were asked about were in fact https traffic. Regardless if the site is by name or IP MWG should be able to whitelist the site for the requesting Client is that correct. Meaning I shouldn't have to go reconfigure my WCCP ACL configuration and make the change there. I should be able to make this change on the MWG.
I confirmed they are all https sites. I did look at the article you sent and this is a possibility. I'm going to grab some wireshark logs and take a look and see if this is what is possibly causing the problem in transparent mode using WCCP.
perhaps this also helps. Do a trace with "policy tracing central", there you can see how the properties are set, like URL, IP, Host and more.
I also posted a Debug LOG in an earlier thread: Debug Logging on MWG
So can generate a LOG File for a specific IP to analyze in Details how the request to MWG Looks like.