Because Facebook uses HTTPS for this policy to work, you must enable SSL Interception on the ProxySG appliance. The following knowledge base articles describe how to enable SSL interception for a self-signed certificate or if you have an internal PKI:
Because Facebook must use HTTPS, add a rule to allow access to tcp://www.facebook.com; else, the request for https://www.facebook.com will not work:
If you install this policy, you can access the page www.facebook.com/bluecoatsystems but not the entire page would load. This is because parts of the page are loaded from different URLs,so you will have to add an allow rule for the following URL: akamaihd.net
If you install this policy, users can access the Facebook page www.facebook.com/bluecoatsystems and view all media on the page, but are blocked from accesing other Facebook pages. If you wanted to have this rule match certain users or groups, you could add a Layer Guard in the Layer that will only allow these certain Users or Groups to match these rules:
Imported Document ID: 000022865
Subscribing will provide email updates when this Article is updated. Login is required.