- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
If I have a client using a http/https explicit proxy, can we do the local RPZ rules by client IP?
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-24-2022 08:58 PM
Hi;
Usually in this case, the client itself relies on the explicit proxy "setup in a pac file" to do the DNS queries, which means that local RPZ rules cannot be based on the client IP address, correct?
Kindly
Wasfi
Solved! Go to Solution.
Re: If I have a client using a http/https explicit proxy, can we do the local RPZ rules by client IP
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-29-2022 09:30 AM
Hello,
It will depend on how you want it to work.
you can have Infoblox take over the DNS first then redirect to the proxy. you can configure this inside the PAC file which is another option.
hope this helps,
Kevin Zettel
Re: If I have a client using a http/https explicit proxy, can we do the local RPZ rules by client IP
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-16-2022 07:52 PM
Thank you for your respose Kevin.
to be honest, I am still puzzled since the client itself does not do any DNS querying itself. This is mainly due to the explicity proxy setup of the client's browser "using a pac file".
In saying that, there might be a setup that you are aware of and I am not. In this case, would you please share with me.
kindly
Wasfi
Re: If I have a client using a http/https explicit proxy, can we do the local RPZ rules by client IP
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-17-2022 01:17 AM
Hi,
If you are using PAC file then you can try to insert "dnsResolve(host)" function. The client will have to perform DNS lookup
Thanks