I'm in process if implementing the Web Gateway as an Explicit Proxy. We chose to use proxy.pac/wpad.dat vs. GPO because I would like to have internal network destinations not get proxied, and also have a couple other subnets use a different instance of the proxy (we are using VMs by the way). Does anyone have suggestions on the following:
I wrote the following, which worked to route traffic to the proxy, but was not granular enough to keep internal traffic un-proxied.
function FindProxyForURL(url, host)
{
if (host =="domain.com") return "DIRECT";
else return "PROXY sophos.domain.com:8080";
}
I then did the following and now nothing is routing to the proxy.
function FindProxyForURL(url, host) {
// If the hostname matches, send direct.
if (dnsDomainIs(host, ".domain.com") ||
shExpMatch(host, "(*.domain.com|domain.com)"))
return "DIRECT";
// If the requested website is hosted within the internal network, send direct.
if (isPlainHostName(host) ||
shExpMatch(host, "*.local") ||
isInNet(dnsResolve(host), "10.1.0.0", "255.255.0.0")
return "DIRECT";
// DEFAULT RULE: All other traffic, use below proxies, in fail-over order.
return "PROXY sophos.domain.com:8080";
}
This thread was automatically locked due to age.