HTTPS blocked sites - Display message rather just showing browser alert

Hello, I have created a web filter and a firewall rule, and I am trying to familiarize with web filtering. As a test, I am trying to block Facebook and a regular site. The regular (non forced https) site shows the user message, but Facebook (which forces to https), just shows the browser SSL issue (so users are not informed that company enforces a web filtering policy, rather they call support). Is there a way to display the message to https sites as well? Best regards Kostas
  • Kostas,

    when an HTTPS page is filtered, XG intercepts the request and exchanges the SSL certificate with its own certificate in order to decrypt the content, scan it and then proceed according to matching firewall rule.

    In order to avoid the HTTPS error page, you have to import the Certificate Authority inside your browser.

    Regards

  • In reply to lferrara:

    Thank you, Main concern is to display the message. Using a valid SSL certificate in the XG, will display the message to the users? Best regards Kostas
  • In reply to Kostas Backas:

    Kostas,

    As I explained you have to upload default CA used by XG and your uses will not receive the error page.

    You cannot exchange the default CA because the certificate used is a on the fly certificate that decrypt, scan and re-encrypt traffic.

    Regards

  • In reply to lferrara:

    ΟΚ, did as suggested and works. I guess there is no way of replacing the CA with a valid one?

     

    Best regards

     

    Kostas

  • In reply to Kostas Backas:

    Kostas,

    the answer is not because as I explained, it is a "special" certificate.

    Regards

  • In reply to lferrara:

    ΟΚ, thank you very much for your help.

     

    Best regards

     

    Kostas