Hi Damir,
This will need multiple policy to deal with and also an extra policy if the proxy is Explicit. Also SSL interception is a must for this to have effect as the site is HTTPS. One possible policy below. The access to some sub directories are also required to load the page correctly. The below policy is inclusive of that. If you are planing to create such a policy, browser's developer-tools will be your best friend. It will show other domains or sub directory access which will also be needed to open the page completely
define condition PBZ_Files ; To allow supporting urls.
url.path.prefix="/sites/default/files"
url.path.prefix="/sites/all/"
url.path.prefix="/pbz/ajax/"
end
<proxy> url.domain=www.pbz.hr
url.path.prefix="/hr/tecajna-lista" allow
condition=PBZ_Files allow
Deny
<proxy>
url.domain=www.pbz.hr http.method=CONNECT Allow ; Extra rule needed for Explicit proxy to allow CONNECT request