We are testing a PAC as it's a bit more intelligent for our mobile users than other implementations. That said, we are having issues in testing where everything works fine for the user and then suddenly they are getting blocked from everything (hitting default block rule). In looking at the logs, the user doesn't appear to be passing creds as the firewall just see's the IP address.
To fix - the user has to log out of windows and back on. Then the username re-appears in the logs.
Any thoughts?
PAC
function FindProxyForURL(url, host) {
if (shExpMatch(url, "https://${asg_hostname}*")) return "DIRECT";
if (shExpMatch(url, "https://" + dnsResolve(host) + "*")) return "DIRECT";
if (isPlainHostName(host)) return "DIRECT";
if (shExpMatch(url, "*.local/*")) return "DIRECT";
if (shExpMatch(url, "*domain.local*")) return "DIRECT";
if (shExpMatch(url, "*domain.net*")) return "DIRECT";
if (isInNet (host, "10.0.0.0", "255.0.0.0" ) ||
isInNet (host, "172.16.0.0", "255.240.0.0") ||
isInNet (host, "192.168.0.0", "255.255.0.0") ||
isInNet (host, "127.0.0.0", "255.255.255.255"))
return "DIRECT";
// DEFAULT RULE: All other traffic, use below proxies, in fail-over order.
return "PROXY proxy1.domain.LOCAL:8080; PROXY x.x.x.x:8080; DIRECT";
}
This thread was automatically locked due to age.
