search cancel

Going to https://pod.threatpulse.com shows You are not protected, but egress IPs are coming from WSS data centers

book

Article ID: 239461

calendar_today

Updated On:

Products

Web Security Service - WSS

Issue/Introduction

Going to http://pod.threatpulse.com shows you are protected.
Going to https://pod.threatpulse.com shows you are not protected.
Egress IPs from pod.threatpulse.com show WSS egress IP addresses
HTTPS traffic is protected and blocked and being properly filtered

Cause

SSL interception is disabled

Resolution

Enable SSL interception for https://portal.threatpulse.com in order to show the proper status and additional details.

Additional Information

To validate if the site is being intercepted or not, check the padlock on the URL and look at the certificate.  If the certificate isn't the Cloud Root CA, but the egress IP addresses match the IP addresses found in article 167174, then you are protected but just not doing SSL interception on that site.