Intercept-x blocking Malware site in http but not https, XG firewall does.

Question

Hi, 
 on our XG I found this logs frequently 
 ;Time;Log subtype;Username;Src IP;Dst IP;Category;URL;Bytes sent;Referrer;Message ID;Policy ID;;
Web filter;27.01.2021 12:28;Denied;xxx;xxx;35.201.108.94;Spyware & Malware;https://logs.spilgames.com/lg/pb/1/ut/ ;0;https://www.jetztspielen.de/spiel/meister-der-blocke;16002;2;;
Web filter;27.01.2021 12:28;Denied;xxx;xxx;35.201.108.94;Spyware & Malware;https://logs.spilgames.com/lg/pb/1/ut/ ;0;https://www.jetztspielen.de/spiel/meister-der-blocke;16002;2;;
Web filter;27.01.2021 12:28;Denied;xxx;xxx;35.201.108.94;Spyware & Malware;https://logs.spilgames.com/lg/pb/1/ut/ ;0;https://www.jetztspielen.de/spiel/meister-der-blocke;16002;2;;
Web filter;27.01.2021 12:28;Denied;xxx;xxx;35.201.108.94;Spyware & Malware;https://logs.spilgames.com/lg/pb/1/ut/ ;0;https://www.jetztspielen.de/spiel/meister-der-blocke;16002;2;;
 
 Like just seen last week with a different URL, Intercept-X Client does not block this site: 
 hxxps://logs.spilgames.com/lg/pb/1/ut/ 
 It's only blocked when opening with http, not https - and the category is Hacking then, not Malware. 
 I get a 404 from the webserver when using https because there is no content but this is not an intercept-x block. 
 I checked the URL again on our XG and it says Spyware & Malware

Why is the super-hyped Intercept-X not doing what others do?

Shweta · Answer

Hi LHerzog 
 For Web control policy, if you are trying to set warn on a website this will not work on a site if accessed over HTTPS. The warn page cannot be injected into the returned page when viewed over HTTPS. Please check this article for more information.