Internet access based on domain name

Future Group Network · ‎02-23-2016

Dear Team,

How will give domain based internet access in irtonport

Handy Putra · ‎02-23-2016

Are you referring to only given internet access for specific domain only for certain users or all users such as users can only access to google.com for example?

If yes, you can perform below:

1. create custom URL category for the domain that you only want to give access to internet

2. create new Identity, then click on "Advanced" link and click on the "URL Categories None Selected" link and add your new custom URL category to include to this Identity.

3. Create policy that is using this new Identity

4. Set the action for that custom URL category from the policy such as allow or monitor, etc

Future Group Network · ‎02-26-2016

Dear Team,

Here we have to give one URL access to only 0ne IP ,kindly help on this.

Eg:IP :10.x.x.x

URL:ssl://gateway.push.apple.com:2195

how i can give access on ironport.

Ken Stieers · ‎02-26-2016

Well first off, port 2195 isn't typically pushed through the WSA. Typically the WSA gets 80, 443, and maybe stuff like 8080, 8443, 4443, etc. (Check your WCCP configuration)

You probably just have to open that port outbound on your firewall.

Handy Putra · ‎02-27-2016

You will need to list port 2195 to the access policy Connect tunnel port.

So:

1. Create custom URL category for .push.apple.com

2. create identity only for IP address 10.x.x.x and then click on "Advanced" link and click on the "URL Categories None Selected" link and add your new custom URL category to include to this Identity

3. Create new access policy using that Identity and go to "Protocol and User Agents" column, under "HTTP CONNECT Ports" put port 2195