Custom headers X-GoogApps-Allowed-Domains

Eduardo Ferreira Fernandez · ‎08-01-2017

Does anybody was able to configure http header injection to block non corporate access to g-suite?

I went to cli , advancedproxyconfig -> customheaders, added the custom header X-GoogApps-Allowed-Domains: mydomain.com , specified the domain to include the header in the request to google.com, did the decryption but do not work at all.

Thank you

Soporteco · ‎09-12-2017

Hi Eduardo.

Do you ever managed to block non-corporate access to gmail? Could you do it by adding the custom header?

Eduardo Ferreira Fernandez · ‎12-06-2017

Yes i did, you had to create a custom url categories with a regex like .google.com, or accounts.google.com and mail.google.com, then you create a decrypt police and include the custom url to the police and chose decrypt.

In the cli you use AdvancedProxyConfig then customheaders

Please enter the custom HTTP header (in the form field: value):
[]> X-GoogApps-Allowed-Domains: voffice.com.br (Domains you want to allow, can be more than one ,comma separated)

Please enter the list of suffix of domains which will be sent this header,
separated by commas:
[]> mail.google.com, accounts.google.com

In the access policies include the same custom URL and choose allow

Thats it