ProxySG & Advanced Secure Gateway

Hi Team,

Customer has configured emplty whitelist policy (i am not sure why they configured), In That polcy none of the url is present(its emply).

The rule like that,

Any   Whitlist policy(empty)  any any allow.

But when in check test the url category in the proxy its some of the urls are matching that empyt policy.

When i disable this policy that url is not working. even in that policy trace also it matches in that policy only.

Please advise.

Thanks,

Ram

Hi Team,

Please fidn the below polcy trace:

MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 
           <Proxy "handle HTML Notification internal requests">
           [Rule]  url=http://notify.bluecoat.com/ variable.bc_notify1=variable.bc_notify2 
    miss :     url=http://notify.bluecoat.com/
           [Rule]  variable.bc_notify1=variable.bc_notify2 url=http://notify.bluecoat.com/ 
    miss :     variable.bc_notify1=variable.bc_notify2
           [Rule]  variable.bc_notify1=variable.bc_notify2 url=http://notify.bluecoat.com/ 
    miss :     variable.bc_notify1=variable.bc_notify2
           [Rule]  variable.bc_notify1=variable.bc_notify2 url=http://notify.bluecoat.com/ 
    miss :     variable.bc_notify1=variable.bc_notify2
           [Rule]  variable.bc_notify1=variable.bc_notify2 url=http://notify.bluecoat.com/ 
    miss :     variable.bc_notify1=variable.bc_notify2
           [Rule]  variable.bc_notify1=variable.bc_notify2 url=http://notify.bluecoat.com/ 
    miss :     variable.bc_notify1=variable.bc_notify2
           [Rule]
    miss :     url=http://notify.bluecoat.com/
    miss :     url=http://notify.bluecoat.com/
    miss :     url=http://notify.bluecoat.com/
    miss :     url=http://notify.bluecoat.com/
    miss :     url=http://notify.bluecoat.com/
    miss :     url=http://notify.bluecoat.com/
           [Rule]  variable.bc_notify1=variable.bc_notify2 
    miss :     variable.bc_notify1=variable.bc_notify2
           [Rule]
    MATCH:         action.__delete_notify_cookies(yes) 
           <Proxy>
    MATCH:         action.ControlRequestHeader1(yes) 
           <Proxy>
    miss :     url.domain=//capdownload.co.uk/
           <Proxy>
    miss :     url.domain=//myhrvwguk.myciphr247.com/
    miss :     url.domain=//pearson.com/
           <Proxy>
    miss :     url.port=8443
           <Proxy>
    miss :     url.domain=//dealerportal-qs.vw-group.com/
           <Proxy>
    miss :     url.domain=//stagingcs.vwg.co.uk/
           <Proxy>
    miss :     url.domain=//notify.bluecoat.com/
           <Proxy>
    miss :     url.domain=//jira.haynet.com/
           <Proxy>
    miss :     client.address=10.170.134.66
  Assigned values of transaction variables:
           bc_notify1=empty1
           bc_notify2=empty2
  connection: service.name=Explicit HTTP client.address=10.170.134.253 proxy.port=80
  time: 2018-08-30 09:26:06 UTC
  CONNECT tcp://tsa.webex.com:443/
    DNS lookup was unrestricted
User-Agent: Mozilla/5.0 (Windows NT 6.2; WOW64; Trident/7.0; rv:11.0) like Gecko
  user: name="EMEA\dtx42bt" realm=EMEA
  authentication status='none' authorization status='none'
      url.category: Whitelist@Policy;Online Meetings@Blue Coat
      total categorization time: 0
      static categorization time: 0
  server.response.code: 0
  client.response.code: 200
  application.name: Cisco WebEx
  application.operation: none
  DSCP client outbound: 65
  DSCP server outbound: 65

Thanks,

Ram

Hi Ram,

                This is weird enough to be interesting. Can you share sysinfo, policy trace showing this rule matching.

Hi Aravind,

I have shared you the logs via PM.

Thanks,

Ram

Hi Ram,

                The category Whitelist is not blank. It is having urls mentioned within it. The variables that you are noticing is for UPE and not have much effect on normal policy processing.

Hi Araind,

Thank you for the finding. But we could see its empty, when we edit this policy.(nothing is there)

Is there any comedic issue ?

Thanks,

Ram.

Hi Aravind,

Please find the attached screenshot.

Thanks,

Ram.

Hi Ram,

                IMO it seems to be a Java issue. Can you try to clear the Java cache, browser cache and then load it to see whether it is listing.

Hi Aravind,

Thank you for the udpate. We have tried but no luck.

But we could see the other policy url details, but only this policy having the issue.

Please advise.

Thanks,

Ram.

Hi Ram,

                Sorry to say but I am not able to think of any other reasons for it to show blank. I don't remember seeing such an issue with other customers also. I will recommend a TAC case to check this out.

Hi Arvind/ Team,

I have a below queries regarding proxy and UA. Please advise on this.

1. This issue might be becuase of the JAVA issue. What is the recommented JAVA version for the proxy 6.5.X and 6.6.X , 6.7.X.

2. We noticed unified agent doesn’t control Firefox browser. Even previously also proxy client also behave the same way, not able to control firefox

Thanks,

Ram.

Hi Ram,

             Due to coding done on prevailing Java version, I don’t think a single Java version can cover the entire 6.5.x, 6.6.x and 6.7.x. While saying that I have managed to load all 3 with Java 7u121 sometime back. Java 8 will have the WebStart option which can be utilized for 6.6.2.x onwards.

              About the Firefox issue, I have not heard it yet. Are you using 32bit UA and the FF is 64bit? Just a thought

Hi Aravind,

Thank you for the update.

I am requesting Recommented JAVA version for Each Sofware version.

Please advise.

For FireFox - i will check with customer and get back to you asap.

Thanks,

Ram.

Hi Ram,

               For 6.5.x Java 7u121 should be fine. For 6.6.x and 6.7.x, you may use java 8. For respective SGOS, you can refer the release notes.

Hi Aravind/Team,

Could you please provide download link for the JAVA verion 7U121. I couldnot find the download link. I was looking fo that link more than 30 mins.

Thanks,

Ram.

Hi Ram,

                 Sorry the version was Java 7u21. We don't have links for those downloads. On google search, got a hit in OLDApps. You can find it at an external link of http://www.oldapps.com/java.php?system=Windows_7 . Please download with caution.