HTTPS / Weblocker Configuration Question
I need some guidance on using webclocker + the HTTPS proxy.
Current running a M270 with 12.7.2
I use the system manager.
I currently am configurating http/https proxies for outbound internal traffic from our lan.
I configured the http proxy with webblocker without incident and it works perfectly.
When I add the https proxy there is a configuration option to use webblocker.
If I select the web blocker template I used for HTTP i notice that the inspect checkbox in the HTTPS PROXY config is not accessible for any category that I have set to deny in http.
I have installed the watchguard cert on my test machine and notice any https traffic to a denied category in http passes through.
Subsequently I created an independent webblocker template where I allowed everything. Then I check inspect in any category I want to block. Things are blocked properly and things work as expected.
Question: Am i doing this right. None of the videos/tutorials/ or wizards seem to hint that this is the proper way to configure this. I was expecting anything that is denied in http would carry through to https. I though the firebox decrypts and then applies the http category.
Thanks in advance.