DPI Exclusion

toscanatlc · October 15

410 / 5.000
Hi,
I often have to exclude domains from the DPI, we have a custom rule 443 but most of the time until I put the exclusion (FQDN) directly into the DPI policy directly into the exclusion before scanning the rule does not work.

I know that the problem must be connected to the framework perhaps of the antivirus.

Any ideas? , thank you very much

Bruce_Briggs · October 15

A FQDN in a To: field of a policy results in a DNS lookup for the IP addr of the FQDN.

A FQDN in a HTTPS proxy action Inspect alllow/deny actually looks as what is in the HTTPS session URL.

About Policies by Domain Name (FQDN)
https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/policies/fqdn_about_c.html

toscanatlc · October 15

Thank you Bruce

DPI Exclusion

Comments