Solved

Bluecoat WhiteListing for Streaming-Services

Posted on 2014-10-24
2
1,056 Views
Last Modified: 2014-12-11
we have implemented-and enabled-WhiteListing for our Streaming-Services,however the service is being blocked.
heres a part of the log:


407 TCP_DENIED 1514 346 POST http cp50792.edgefcs.net 1935 /fcs/ident2 - - - - - "Shockwave Flash" DENIED "wl_parl" - 10.209.46.4 SG-HTTP-Service 81.52.201.142 0


and here the Active WhiteList of the Bluecoat:

define category wl_parl
...
edgefcs.net
end

does anyone have an idea why its getting blocked and how to fix this?
0
Comment
Question by:DukewillNukem
2 Comments
 
LVL 22

Expert Comment

by:eeRoot
ID: 40403256
This comment :  ""Shockwave Flash" DENIED"   implies that the flash content was blocked.  Are you blocking or allowing application/x-shockwave-flash type content?
0
 
LVL 63

Accepted Solution

by:
btan earned 500 total points
ID: 40403338
to create whitelist based on URL, check this
From the Management Console, select Configuration > Policy > Visual Policy Manager > Launch. The visual policy dialogue displays.
Select Policy > Add Web Access Layer. Give the web access layer a unique name. For example "Web Access Exceptions.
Click OK.
Click Add a Rule.
Right click the Destination column within the rule and select Set.
Click New, and select Request URL Category.

Encourage you to check out the pdf on admin guide under whitelisting
https://bto.bluecoat.com/sites/default/files/tech_pubs/SGOS6.1.x_Admin_Guide.pdf

See "Creating a Whitelist", "Creating Policy to Log Access to Specific Content", however,
e.g. if we want to find out more from log, we can  try to record information in the ProxySG appliance event log. See "Creating Policy to Log Access to Specific Content";

e.g.  if we do not know the specific category or is unknown ( such as category unlicensed is assigned in addition to unavailable ), this happens when an attempt to categorize a URL fails if no database is downloaded, your license is expired, or if a system error occurs. See "Creating policy when category information in unavailable";
 
e.g. if we do not know the specific category for URL ( such as  category none), this is  not an error condition; many sites (such as those inside a corporate intranet) are unlikely to be categorized by a commercial service.  See  "Creating Policy for Uncategorized URLs" - extract example disallows access to uncategorized sites outside of the corporate network:
define subnet intranet
10.0.0.0/8 ; internal network
192.168.123.45; external gateway
end
<proxy>
; allow unrestricted access to internal addresses
ALLOW url.address=intranet
; otherwise (internet), restrict Sports, Shopping and 
uncategorized sites
DENY category=(Sports, Shopping, none)

Open in new window

0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Occasionally, we encounter connectivity issues that appear to be isolated to cable internet service.  The issues we typically encountered were reset errors within Internet Explorer when accessing web sites or continually dropped or failing VPN conne…
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question