New 'set_dedicated_egress' warnings pushing WSS policy out via UPE
Article ID: 245679
Updated On:
Products
Cloud Secure Web Gateway - Cloud SWG
Issue/Introduction
After pushing a UPE update to a WSS Tenant, WSS admin noticed the following new warning related to 'dedicated_egress' which had not appeared before:
7 warnings and 0 errors
Unknown category: 'Sexual Expression'
network interface label not currently configured: 'interconnect' central:5316: action.set_dedicated_egress_headers(yes) reflect_ip(interface.interconnect)
network interface label not currently configured: 'interconnect' central:5351: action.set_dedicated_egress_connect_headers(yes) reflect_ip(interface.interconnect)
Unknown category: 'Sexual Expression'
reducing constant true condition config.customer.entitlement.gin.threat_risk.policy=true [tenant:5909]
reducing constant true condition config.customer.entitlement.gin.threat_risk.policy=true [tenant:3331]
The client effective address used for attack detection may be overridden for policy evaluation.
It does not appear to be impacting any users, as no users reported any issues into helpdesk.
Environment
Management Center / Universal Policy Enforcement
All WSS access methods.
Cause
Broadcom is adding logic for an upcoming Dedicated Egress IP address feature, which is not fully enabled in production yet.
Resolution
You can safely ignore message for now as it is purely cosmetic and will not impact any users nor the policy installation process.
Additional Information
More details on the upcoming 'Dedicated Egress IP address' or DEI feature available in following recording:
Attachments
Feedback
Yes
No
Powered by
