Directing SSL traffic to Content Gateway via explicit proxy

Use an existing PAC file or create a new one to direct HTTPS traffic to Content Gateway.

Step 5, below, provides a script that can be used a basis for building a custom PAC file.

To configure Content Gateway to serve a PAC file:

Steps

  1. In the Content Gateway manager, go to the Configure > My Proxy > Basic > General tab.
  2. Under Features > Protocols, make sure that, ensure that HTTPS is On. If HTTPS is disabled, set it to On, click Apply, and then click Restart.
  3. Go to the Configure > Content Routing > Browser Auto-Config > PAC tab.
  4. Specify an Auto-Configuration Port for the proxy to use to serve the PAC file (8083, by default).
  5. Use the PAC Settings area to review or create the PAC file:
    • If an administrator has copied an existing PAC file into the Content Gateway config directory (as described in Using a PAC file), the contents of the file are displayed. Review and update the file as needed.
    • If no PAC file has been configured, the PAC Settings field is empty. To start creating a PAC file, copy and paste the following template into the PAC Settings field. Replace <host> with the IP address or hostname of the Content Gateway machine.
    function FindProxyForURL(url, host)
{
url = url.toLowerCase(); host = host.toLowerCase();
if(url.substring(0, 5) == "http:"){ return "PROXY <host>:8080";
}
else if(url.substring(0, 4) == "ftp:"){ return "PROXY <host>:2121";
}
else if(url.substring(0, 6) == "https:"){ return "PROXY <host>:8080";
}
else{
return "DIRECT";
}
}

    The template is for basic testing only. Administrators should modify the file as needed to suit their organization’s needs.

  6. Click Apply.
  7. Go to the Configure > My Proxy > Basic > General tab and click Restart.

    Once the new PAC file is in place, configure users’ browsers to use the PAC file. For example, if the PAC file is located on the proxy server with the hostname “proxy1” and Content Gateway uses the default port 8083 to serve the file, users’ browsers must be configured to include the following URL in their proxy configuration settings:

    http://proxy1.company.com:8083/proxy.pac

    The procedures for specifying the PAC file location vary among browsers. See Using a PAC file for more information.