thanks fferaboli for the reply.
So, If i understand your reply correctly:
1) I still need to configure browsers to use proxy even when I'm using the inline+proxy mode
In inline+proxy mode, Would I be able to configure which users (perhaps by specifying IP range etc) using proxy, and which user will not be using it?
2) If I'm using Inline ONLY mode, the only thing I won't get is blocking/decrypting https, ftp/socks proxy, and integration with DLP. Right?
Basically, in this customer's place, there are 2 groups of users: Staff and Guest.
For staff, they would want stricker policy - able to block https, scan threats etc. For Guest, I can say that they just don't care much on the policy as long as the guest can browse internet. And configuring browser to use proxy in these guest users would be troublesome too.
Tq.