ProxySG & Advanced Secure Gateway

 View Only
Back to discussions
Expand all | Collapse all

Effective way for allowing single URL while category is blocked

  • 1.  Effective way for allowing single URL while category is blocked

    Posted Feb 19, 2018 03:07 AM

    Hello,

    what would be most effective way for allowing single URL in policy. For example we have site which needs to be allowed:

     

    https://www.pbz.hr/hr/tecajna-lista

     

    while access to site https://www.pbz.hr should be/stay blocked , and every other site.

     

    Thank you

    br

     



  • 2.  RE: Effective way for allowing single URL while category is blocked

    Posted Feb 20, 2018 02:05 AM

    Hi Damir,

     

                      This will need multiple policy to deal with and also an extra policy if the proxy is Explicit. Also SSL interception is a must for this to have effect as the site is HTTPS. One possible policy below. The access to some sub directories are also required to load the page correctly. The below policy is inclusive of that. If you are planing to create such a policy, browser's developer-tools will be your best friend. It will show other domains or sub directory access which will also be needed to open the page completely

     

    define condition PBZ_Files ; To allow supporting urls. 
url.path.prefix="/sites/default/files"
url.path.prefix="/sites/all/"
url.path.prefix="/pbz/ajax/"
end

<proxy> url.domain=www.pbz.hr
url.path.prefix="/hr/tecajna-lista" allow
condition=PBZ_Files allow
Deny

<proxy>
url.domain=www.pbz.hr http.method=CONNECT Allow ; Extra rule needed for Explicit proxy to allow CONNECT request