Health check drtr.rating_service keeps is failing with an error "Ok for some IPs" which is indicating network connectivity issue with cloud service. 

1) Verify under Broadcom service status portal if any issues reported with cloud service.

2) Make sure proxy can communicate with external domain webpulse.es.bluecoat.com and following IPs:

168.149.132.1
168.149.132.2
168.149.132.32
168.149.132.33
168.149.132.64
168.149.132.65
168.149.132.80
168.149.132.81
168.149.132.96
168.149.132.97
168.149.132.112
168.149.132.113
168.149.132.128
168.149.132.129
168.149.132.144
168.149.132.145
168.149.132.160
168.149.132.161
168.149.132.176
168.149.132.177

Note: Verify network required ports, protocols, and services for the Edge SWG (ProxySG) appliance in the KB150987

3) Clear DNS cache and re-enable DRTR service as it stated in the KB166099.

If the error still present, raise a ticket with Broadcom Support team and upload logs below:

-Run packet capture and force web pulse to download updates under Configuration > Threat Protection > WebPulse.

Use filter below:
host webpulse.es.bluecoat.com or dns

- Upload packet capture, sysinfo and event logs from affected proxy to the case for support team to review.