Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Content Gateway Analysis > Bypass options
Bypass options
Administrator Help | Forcepoint Web Security | v8.5.x
 
Related topics:
The bypass options available with Forcepoint Web Security are used to configure settings that force site requests to bypass specific Content Gateway functionality.
SSL decryption bypass
When SSL support is enabled in Content Gateway to manage encrypted traffic:
*
*
*
 
Note 
Category settings
For Category settings, a predefined Privacy Category group includes categories that may be subject to regulatory requirements. These predefined privacy categories are marked with an icon in the category list.
Traffic that involves websites in these categories may include personal identification information that should not be decrypted. In order to avoid liability for inspecting this type of information, you may want to specify some or all of these categories for decryption bypass. End users can determine that the website they are viewing is not decrypted by verifying that the certificate is the original for that site.
Use the Settings > Scanning > SSL Decryption Bypass page to select the default privacy categories for SSL decryption bypass:
1.
Click the Select Privacy Categories button. Check boxes for the website categories that constitute the default group are selected in the Category box.
2.
You can create your own set of categories for SSL decryption bypass. On the SSL Decryption Bypass page, specify individual website categories for which decryption is not performed:
1.
2.
To clear your selections from the category tree, click the Clear All button.
To remove a category or subcategory from the list, select the category and click the Remove button.
Client list
To identify a client IP address or IP address range for SSL decryption bypass:
1.
Click Add and enter the client IP address or IP address range in the Add Client Entry box, one entry per line.
When specifying an IP address range, use a hyphen (-) to separate the first address from the last.
2.
3.
Click OK to add the entries to the list.
To modify an entry, click on the IP address and make changes in the Edit Client Entry box. Click OK to save your changes or Cancel to close the dialog box without saving.
To remove an entry from the list, select the check box adjacent to the entry and click Delete. Confirm the action.
When you are finished, click OK to cache your changes. Changes are not implemented until you click Save and Deploy.
Destination list
To specify a destination hostname, IP address, or IP address range for SSL decryption bypass:
1.
Click Add and enter the hostname, IP address, or IP address range in the Add Destination Entry box, one entry per line. For example: thissite.com.
*
*
*
*
*
2.
3.
Click OK to add the entries to the list.
To modify an entry, click on the hostname or IP address and modify the entry in the Edit Destination Entry dialog box. Click OK to save your changes or Cancel to close the dialog box without saving your changes.
To remove an entry, select the check box adjacent to the entry and click Delete. Confirm the action.
When you are finished, click OK to cache your changes. Changes are not implemented until you click Save and Deploy.
Authentication bypass
Use the Authentication Bypass tab of the Settings > Scanning > Bypass Settings page to select cloud applications. Requests to selected applications will bypass the authentication process configured in Content Gateway manager. See Content Gateway user authentication for more information.
Check the box next to Office 365 and related applications to bypass authentication for all requests to any Office 365 product.
 
Important 
Content Gateway bypass
Use the Content Gateway Bypass tab of the Settings > Scanning > Bypass Settings page to select cloud applications. Requests to selected applications will completely bypass the Content Gateway server.
Check the box next to Office 365 and related applications to bypass Content Gateway for all requests to any Office 365 product.
 
Important 

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Content Gateway Analysis > Bypass options
Copyright 2023 Forcepoint. All rights reserved.