ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

PAC file for automatic failover in TransProxy (Explicit proxy over IPsec) does not work


Article ID: 171549


Updated On:


Web Security Service - WSS


PAC file is used for the automatic failover in TransProxy. It will wait for the default TCP timeout value and look for other proxy defined in the PAC file. However, it never fails over to the secondary pod. 


TransProxy (Explicit proxy over IPsec) traffic goes through the IPSEC tunnel. So, enabling DPD in the firewall is required for the failover to work.