How to build a customized local host categorization list to use in the SSLV

book

Article ID: 169371

calendar_today

Updated On:

Products

SSL Visibility Appliance Software

Issue/Introduction

When we have a big list of URLs, we can create a custom category in order to cover all these sites with just one rule. Here are the steps to configure this categorization list.

Resolution

  1. Create a local database for the SSLV you need to open a blank document (notepad, notepad++) then use the following syntaxes:

define category "my-category" 
URL or IP or CN
end 


E.G:

define category "my-whitelist" 
*.google.com
www.bluecoat.com
8.8.8.8 
CN=*.facebook.com
end


Asterisk  (*) are allowed as wildcards. 

Notes:

  • All this data will try to match the CONNECT request during the handshake, for example, if we use an IP instead an URL and the CONNECT will show an URL, the device will not resolve the IP into an URL (reverse lookup).
  • Save this document with a .bin extension and make sure it is saved using the ANSI encoding format.
  1. Import the list into the SSLV (Web server needed):

Go to Policies > Host categorization List > Local.
Import Local DB on the SSLV

Edit button (pen icon) under Host Categorization Database Settings.
User-added image

Specify the URL, and connection details. Click OK

Go to the Host Categorization Status and click on Download Database (lightning icon).

The process will start. After download, the list will be ready to use.

Attachments