I'm using a captive portal for unauthenticated users. This seems to be working just fine, however the customer want to exclude specific site from the captive portal and user do not need to be identified at all.
What I did is create a rule above the one with the captive portal and allowed http/https to the specific domains. I'm also using https inspection on the GW.
I've created a network group with several domain objects in it. These domain objects are configured like so:
".example.com". However when I try to access the website I get mixed results. At first it seems to be working and I cannot access other sites then the sites I've allowed, however after a few minutes I can suddenly access all other internet sites without being redirected to the captive portal.
I don't understand why this is happening.