Add access rules for Explicit HTTP Proxy

To enable the Explicit proxy feature, you must add access rules for the Explicit HTTP Proxy in the Engine Policy.

Before you begin

You must have the following configured:
  • The Explicit HTTP Proxy service element. For more details, refer to the Create a service element for HTTP Explicit proxy topic.
  • The Proxy Follow-up Sub-policy. For more details on how to create a sub-policy, refer to the How sub-policies work topic.
  • Note: Before the traffic is sent to the destination, the Proxy Follow-up sub-policy rules are used to control the traffic that matches the Explicit HTTP Proxy access rule.

Note: The access rules for the Explicit HTTP Proxy must always be positioned at the top in the policy.

Steps

  1. Select Engine Configuration.
  2. Browse to Policies > <Engine Policies>.
  3. Right-click a policy, then select Edit <Policy name>.
  4. To select traffic for Explicit HTTP Proxy, you can add the Access rules similar to the following:
    Source Destination Service Action
    ANY Engine Explicit HTTP Proxy service element Allow

    Proxy Jump: Proxy

    Follow-up Sub Policy
  5. 5. Right-click the Source cell in the Access rule, then select a source of the traffic.
  6. Right-click the Destination cell in the Access rule, then select a destination for the traffic.
  7. Right-click the Service cell in the Access rule, then select the Explicit HTTP Proxy service element.
  8. For the Action cell:
    1. Right-click the Action cell in the Access rule, then select Allow.
    2. Right-click the Action cell, then select Edit Options. The Action Options dialog box is displayed.
    3. On the General tab, click the Select button against the HTTP Proxy Policy field to select a sub-policy.
  9. Click Save and Install