ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Allow only corporate WebEx and block the rest on ProxySG


Article ID: 171279


Updated On:


Advanced Secure Gateway Software - ASG ProxySG Software - SGOS


Allow organization·specific WebEx while blocking others.


This article uses an example of a company's WebEx as

Creating a policy to allow and blocking the domain will not help here because the WebEx application tends to connect to several URLs ending with (e.g. It is not a viable solution to consolidate and whitelist all the backend URLs since there is no constant list of domain names because it keeps changing, and new URLs may get added in the future.

The solution is to exclude from doing SSL interception and add the below Content Policy Language (CPL) script in Local Policy File.

<proxy> Allow
request.header.User-Agent="WbxAgent" Allow

Steps to add CPL script in Local Policy File: Add CPL to a local policy file on the ProxySG