Troubleshooting - testing the Client Site Proxy with web Security policy rules

book

Article ID: 178312

calendar_today

Updated On:

Products

Web Security.cloud

Issue/Introduction

 

Resolution

Troubleshooting - testing the Client Site Proxy with web Security policy rules

Once the CSP is installed, the best way to ensure that the CSP service works is to create two policy rules in the portal. Then test that the CSP works using the procedure below.

Define two policy rules in the portal:

  • A policy rule that denies a known web site for a particular user.

  • A policy rule for the same web site that denies a local IP address.

To test your firewall rules

  1. Identify the following for testing:

    • 2 x user accounts (A and B)

    • 2 x workstations and their local IP address (X and Y)

    • 1 x web site for testing.

  2. In the portal

  3. Ensure that the domain and the user names exist

  4. Ensure that the Local IP address exits

  5. Create a custom URL group for the selected URL

  6. Create a deny rule for user account A for this URL group

  7. Create a deny rule for address X for this URL group

Once the rules have been applied, the expected test results should be:

Workstation X

Workstation Y

User A

Web site is denied

Web site is denied

User B

Web site is denied

Web site is allowed

This set of rules can be used at any time to test the correct operation of the CSP.