[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More
Experts Exchange Solution brought to you by
"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.
When a request for an HTTPS site comes in, in a transparent environment, it will come through as an IP address instead of the domain name. The Web Gateway will then use that IP address as the domain name. This can cause problems when trying to whitelist\block a domain name or to search for the domain name in an access log. In order to get the correct domain name instead, we need to add a rule that fixes this. The rule will essentially take the common name from the certificate, and place that into the url.host property so it is then populated with the correct domain.
If you do decide to deploy either transparent router or transparent bridge modes, the most common issue we see in support is with exceptions. Everyone needs exceptions at some point (internal resources, non standard compliant apps and so on). In transparent router mode you can "route" around the Web Gateway on a logical level. In transparent bridge mode, the Web Gateway is in the physical path of the traffic (inline) and it is almost impossible to get around it. Also important for bridge mode is the potential for a complete network outage if no precautions are taken before a Web Gateway goes offline.
Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.
From novice to tech pro — start learning today.
Premium members can enroll in this course at no extra cost.