You can allow access to Web sites or network locations using the whitelist. Whitelist entries are globally allowed. You do not have to configure a policy to activate whitelist entries. Access is allowed to a Web site or network on the whitelist despite any matching policies and the visit is not recorded for reports.
When you add an address to the whitelist, network traffic to and network traffic from that address is not scanned for malware. If the address is a Web site domain, any URL that starts with that domain is excluded from malware scanning.
You can also allow access to specific Web sites for a single policy using content filter exceptions. Because they act on single policies only, content filter exceptions provide a more targeted method of allowing access to Web sites.
Symantec Web Gateway applies content filter policies to embedded URLs. However, whitelisted domains and domain exceptions that you specify in content filter policies are not applied to embedded URLs. An embedded URL is when a URL contains another URL within it. The embedded URL in the following example is badurl.com:
The Symantec Web Gateway proxy does not support IP-based whitelisting, but it does support domain-based whitelisting. If you want to whitelist a server, you must use a proxy auto-configuration (PAC) file. If you want to whitelist a client's computer, do not configure client the browser to use the Symantec Web Gateway proxy service.