Video Screencast Help

Symantec Web Gateway SSL traffic

Created: 11 Aug 2012 | 4 comments
Muhammad Ishaq Khan's picture

Hi,

 

I configure SWG for both https & SSL Deep Inspection proxy. Now need to know that how I give SSL prot on client machine throug PAC file. or through http/s proxy configuration my SSL traffic also cover/

 

best regards

Ishaq

Comments 4 CommentsJump to latest comment

Muhammad Ishaq Khan's picture

kindly find attached screenshot!!! when I access https://facebook.com it show me with http protocol and prot 443

 

report.JPG

Best Regards,                                     &nbsp

Muhammad Ishaq Khan's picture

Hi every body I am able to redirect my https/ssl traffic to Symantec Web Gateway SSL port. PAC look like:

function FindProxyForURL(url, host)
{
 
        if (url.substring(0, 6) == "https:")
            {
                return "PROXY 192.168.2.200:8443";
            }
        else
            {
                return "PROXY 192.168.2.200:8080";
            }
    
}

 

No I am facing an another problem, I get error message "Invalid Server Certificate" when I attempt to open following web sites:

- facebook.com
- hotmail.com
- webmail.opentransfer.com

I need some urgent support, kindly look this.

Best regards

Ishaq

 

Best Regards,                                     &nbsp

fferaboli's picture

Ishaq wrote "I need some urgent support, kindly look this.

Best regards

Ishaq"

 

Hi Ishaq,

for urgent issues please contact Symantec Support.

Thanks!

Federico

SMLatCST's picture

You always get that certificate message when using SSL Deep Inspection.  To use SSL Deep Inspection and remove the error message, you need to import the SWG's cert into your endpoint machines, or give it a new cert from a Trusted CA.  See Steps 5 and 6 of the below article:

http://www.symantec.com/docs/HOWTO54180