Verdict connect_method_denied in Web Security Service report

book

Article ID: 173607

calendar_today

Updated On:

Products

Web Security Service - WSS

Issue/Introduction

  • connect_method_denied appears in the portal report when page is blocked.
  • Cannot access a web page because the connection method was denied.

The WSS report shows a verdict of connect_method_denied.

Cause

WSS only allows web traffic over ports 80 and 443.

Environment

Web Security Service

Resolution

WSS can be configured to allow connections to non-standard ports.

Allow non-standard ports:

  • VPN/Firewall access method:
    • The All Ports license will allow any port to pass through WSS.
    • Domain bypass at the firewall from the IPSec tunnel will prevent traffic from going through WSS service. This workaround will allow traffic to use the non-standard port.
  • WSS Agent (WSSA):
    • Forward specific ports in the WSS portal via Connectivity > WSS Agent > Forwarding Ports.
    • Bypass the domain from the WSS service via Connectivity > Bypassed Traffic > Bypassed Domains.
  • Explicit Proxy
    • Bypass the domain from the WSS service via Connectivity > Bypassed Traffic > Bypassed Domains.