Solved

Bluecoat WhiteListing for Streaming-Services

Posted on 2014-10-24
2
1,103 Views
Last Modified: 2014-12-11
we have implemented-and enabled-WhiteListing for our Streaming-Services,however the service is being blocked.
heres a part of the log:


407 TCP_DENIED 1514 346 POST http cp50792.edgefcs.net 1935 /fcs/ident2 - - - - - "Shockwave Flash" DENIED "wl_parl" - 10.209.46.4 SG-HTTP-Service 81.52.201.142 0


and here the Active WhiteList of the Bluecoat:

define category wl_parl
...
edgefcs.net
end

does anyone have an idea why its getting blocked and how to fix this?
0
Comment
Question by:DukewillNukem
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 22

Expert Comment

by:eeRoot
ID: 40403256
This comment :  ""Shockwave Flash" DENIED"   implies that the flash content was blocked.  Are you blocking or allowing application/x-shockwave-flash type content?
0
 
LVL 63

Accepted Solution

by:
btan earned 500 total points
ID: 40403338
to create whitelist based on URL, check this
From the Management Console, select Configuration > Policy > Visual Policy Manager > Launch. The visual policy dialogue displays.
Select Policy > Add Web Access Layer. Give the web access layer a unique name. For example "Web Access Exceptions.
Click OK.
Click Add a Rule.
Right click the Destination column within the rule and select Set.
Click New, and select Request URL Category.

Encourage you to check out the pdf on admin guide under whitelisting
https://bto.bluecoat.com/sites/default/files/tech_pubs/SGOS6.1.x_Admin_Guide.pdf

See "Creating a Whitelist", "Creating Policy to Log Access to Specific Content", however,
e.g. if we want to find out more from log, we can  try to record information in the ProxySG appliance event log. See "Creating Policy to Log Access to Specific Content";

e.g.  if we do not know the specific category or is unknown ( such as category unlicensed is assigned in addition to unavailable ), this happens when an attempt to categorize a URL fails if no database is downloaded, your license is expired, or if a system error occurs. See "Creating policy when category information in unavailable";
 
e.g. if we do not know the specific category for URL ( such as  category none), this is  not an error condition; many sites (such as those inside a corporate intranet) are unlikely to be categorized by a commercial service.  See  "Creating Policy for Uncategorized URLs" - extract example disallows access to uncategorized sites outside of the corporate network:
define subnet intranet
10.0.0.0/8 ; internal network
192.168.123.45; external gateway
end
<proxy>
; allow unrestricted access to internal addresses
ALLOW url.address=intranet
; otherwise (internet), restrict Sports, Shopping and 
uncategorized sites
DENY category=(Sports, Shopping, none)

Open in new window

0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
extend vlan through a layer 3 connection 31 199
Turn off SIP ALG - Cisco ASA 5505 1 277
Windows 2012 R2 Anywhere Access and PCI compliance 5 64
NAT on Fortigate 2 38
I recently had the displeasure of buying a new firewall at one of the buildings I play Sys Admin at. I had to get a better firewall than the cheap one that I had there since I was reconnecting the main office to the satellite office via point-to-poi…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question