IPSEC For IPsec, perform a DNS lookup on the site. Next, set up a rule on the firewall router to bypass the IP address of the site. The traffic to the site does not go through the IPsec tunnel.
Unified Agent (Windows and Mac)/Explicit Proxy Login to the web portal and go to Service > Network > Bypassed Sites > Bypass IPs/Subnets: > + Add Bypass IPs. Enter the IP address and save.
If using an explicit proxy and you are also use a proxy PAC/WPAD file, add the URLs to these files. You can also choose to add a rule on the on-premises ProxySG to not forward these URLs to WSS but send them direct instead. The Content Policy Language (CPL) code to achieve forwarding is:
If the proxy is a transparent proxy, add the address to the bypass list so it goes direct. You might need to change firewall and router rules to allow the clients to go directly to those websites.
NOTE: For custom destination ports, Bypassed Sites and Trusted Destinations are not effective. Understand the security risk of bypassing the Web Security Service (no applied filtering or malware scanning).
Subscribing will provide email updates when this Article is updated. Login is required to Subscribe