Issue/Introduction:
The Netflix application does not run properly on an iPad or iPhone when being accessed through the ProxySG and SSL Interception is enabled.
In order to solve this problem, policy should be created that will bypass the domains below from SSL server certificate validation. In addition, it is recommended that caching is disabled.
This article will cover the process of bypassing the following domains:
netflix.com
netflix.net
nflximg.com
api.netflix.com
uiboot.netflix.com
secure.netflix.com
mobile-api.netflix.com
htmltvui-api.netflix.com
api-user.netflix.com
netflix.com.edgesuite.net
edgesuite.net
llnwd.net
Amazonaws.com
Resolution:
To bypass the above domains:
- Launch Visual Policy Manager.
- Create a Combined Destination Object in SSL Access Layer and add the domains listed above under Server_URL object.
- In the Action column, Set Server Certificate Validation to Disable server certificate validation
- To bypass caching, Add a rule in Web Access Layer with the same Combined Destination Object created above with the Action to Bypass Cache.
- Install the policy.