Error: "Access denied" when navigating to an intranet site through SWG Proxy
Last Updated September 15, 2015
When you attempt to navigate to an intranet site which is hosted on a port lower than 1025, or to an SSL site on a port other than 443, you receive an "Access denied" page in your web browser. The client browser is configured to use Symantec Web Gateway (SWG) 5.0.x as a proxy.
Internet Explorer displays:
Access control configuration prevents your request from being allowed at this time. Please contact your service provider if you feel this is incorrect.
By default, SWG Proxy does not proxy for ports below 1025, except for HTTPS on port 443 and the following HTTP ports: 21, 70, 80, 210, 280, 443, 488, 591, and 777.
For ports above 1025, HTTP traffic to any port can be proxied, but HTTPS traffic is not proxied by default.
If you are attempting to proxy HTTPS over ANY other port than 443:
1. SSL Deep Inspection will need to be enabled under the SWG proxy settings. 2. The client web browser will need to be configured to use the SSL Deep Inspection port e.g. 8443 for 'Secure' connections (Advanced Settings).
Please contact support for assistance with opening other ports to permit access to internal intranet sites.
SWG5.0.x is Enabled in either Proxy or Proxy+Inline mode.
The client browser is configured to use SWG5.0.x as a proxy server.
Imported Document ID: TECH164595
Subscribing will provide email updates when this Article is updated. Login is required to Subscribe