Solved: HTTPS Inspection Problem

ahmeterkol · ‎2021-08-25

Hi

I want to inspect and drop only a specific URL but when I create a costom application with full URL (eg. www.example.com/test) it doesn't inspect packet. If I write down only domain it works (e.g. www.example.com ). In URL filtering it works with specific url in list no problem. For business purposes I have to inspect traffic only with specific url and bypass all URLs under same domain. What should I do for it?

PhoneBoy · ‎2021-08-25

In order to see the the full URL, HTTPS Inspection needs to be performed.
We can see the site being accessed without it (at least up to TLS 1.2).
So it’s not possible to inspect only www.example.com/url without inspecting everything else at www.example.com.

View solution in original post

_Val_ · ‎2021-08-25

Is it HTTPSi or URF filtering question, or both? 🙂

ahmeterkol · ‎2021-08-25

There is no problem in URL filtering with specific URL but in HTTPSi if I write full URL it doesn't match. I have to write main domain URL to match the inspection rule.

_Val_ · ‎2021-08-25

Please show your HTTPS inspection rule you are applying to that application

PhoneBoy · ‎2021-08-25

In order to see the the full URL, HTTPS Inspection needs to be performed.
We can see the site being accessed without it (at least up to TLS 1.2).
So it’s not possible to inspect only www.example.com/url without inspecting everything else at www.example.com.

ahmeterkol · ‎2021-08-25

Thanks

_Val_ · ‎2021-08-26

Hmmm, I assumed HTTPSi is enabled. Wrong assumption 🙂

Are you a member of CheckMates?

HTTPS Inspection Problem