Link to home
Start Free TrialLog in
Avatar of djpriceAtl
djpriceAtl

asked on

Juniper SSG Content Filter Being Bypassed Using https

I have a Juniper SSG 140 with the latest firmware.  With using the intergrated (SurfControl) content filtering some users have discovered they can bypass the filter simply by accessing the site using https.  So it blocks http://www.XXX.com but allows https://www.XXX.com.  I have both http & https selected as the policy service that this is to be applied to but it will not block any https sites in any of my categories or in my blocked sites list.  Does anyone know how to block both http and https sites with Juniper's intergrates web content filter?
Avatar of giltjr
giltjr
Flag of United States of America image

Although it is a year old, based on this you would need to  get WebSense:

https://kb.juniper.net/InfoCenter/index?page=content&id=KB24776&actp=search

Doing anything with https can be difficult because it is encrypted traffic, so you have to have a "man in the middle" proxy.
This question needs an answer!
Become an EE member today
7 DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.