start transaction -------------------
transaction ID=1626096 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:53 UTC
GET https://www.google.com/maps/vt/pb=!1m4!1m3!1i15!2i25933!3i15328!2m3!1e0!2sm!3i472181460!3m7!2sen!5e1105!12m4!1e68!2m2!1sset!2sRoadmap!4e1!5m4!1e4!8m2!1e0!1e1!6m7!1e12!2i2!26m1!4b1!39b1!44e1!50e0!23i1358902
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/maps/_/js/k=maps.mvw.en.oBwP3P9sCRA.O/m=npm,wte,vw/rt=j/d=1/ed=1/exm=/rs=ACT90oG134lDDND2DQyOF1P2mj2FO9watQ
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 53 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 1 elapsed 0 ms
    client-out: start 50 elapsed 0 ms
    access-logging: start 53 elapsed 0 ms
    stop-transaction: start 53 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 50 last_byte 53
  client connection: first-response-byte 50 last-response-byte 53

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626098 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:53 UTC
GET https://www.google.com/maps/vt/pb=!1m4!1m3!1i15!2i25935!3i15326!2m3!1e0!2sm!3i472181472!3m7!2sen!5e1105!12m4!1e68!2m2!1sset!2sRoadmap!4e1!5m4!1e4!8m2!1e0!1e1!6m7!1e12!2i2!26m1!4b1!39b1!44e1!50e0!23i1358902
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/maps/_/js/k=maps.mvw.en.oBwP3P9sCRA.O/m=npm,wte,vw/rt=j/d=1/ed=1/exm=/rs=ACT90oG134lDDND2DQyOF1P2mj2FO9watQ
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 1
    static categorization time: 1
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 61 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 2 elapsed 0 ms
    server-in: start 2 elapsed 0 ms
    client-out: start 53 elapsed 0 ms
    access-logging: start 61 elapsed 0 ms
    stop-transaction: start 61 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  server connection: start 2
    DNS Lookup: start 2 elapsed 0 ms
  server connection: connected 2 first-byte 53 last_byte 61
  client connection: first-response-byte 53 last-response-byte 61

Total time added: 1 ms
Total latency to first byte: 1 ms
   Request latency: 1 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626097 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:53 UTC
GET https://www.google.com/maps/vt/pb=!1m4!1m3!1i15!2i25934!3i15328!2m3!1e0!2sm!3i472181460!3m7!2sen!5e1105!12m4!1e68!2m2!1sset!2sRoadmap!4e1!5m4!1e4!8m2!1e0!1e1!6m7!1e12!2i2!26m1!4b1!39b1!44e1!50e0!23i1358902
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/maps/_/js/k=maps.mvw.en.oBwP3P9sCRA.O/m=npm,wte,vw/rt=j/d=1/ed=1/exm=/rs=ACT90oG134lDDND2DQyOF1P2mj2FO9watQ
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 1
    static categorization time: 1
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 66 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 2 elapsed 0 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 53 elapsed 0 ms
    access-logging: start 66 elapsed 0 ms
    stop-transaction: start 66 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  server connection: start 2
    DNS Lookup: start 2 elapsed 1 ms
  server connection: connected 3 first-byte 53 last_byte 66
  client connection: first-response-byte 53 last-response-byte 66

Total time added: 1 ms
Total latency to first byte: 2 ms
   Request latency: 1 ms
  OCS connect time: 1 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626099 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:53 UTC
GET https://www.google.com/maps/vt/pb=!1m4!1m3!1i15!2i25935!3i15327!2m3!1e0!2sm!3i472181472!3m7!2sen!5e1105!12m4!1e68!2m2!1sset!2sRoadmap!4e1!5m4!1e4!8m2!1e0!1e1!6m7!1e12!2i2!26m1!4b1!39b1!44e1!50e0!23i1358902
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/maps/_/js/k=maps.mvw.en.oBwP3P9sCRA.O/m=npm,wte,vw/rt=j/d=1/ed=1/exm=/rs=ACT90oG134lDDND2DQyOF1P2mj2FO9watQ
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 74 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 1 elapsed 0 ms
    client-out: start 57 elapsed 0 ms
    access-logging: start 74 elapsed 0 ms
    stop-transaction: start 74 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 57 last_byte 74
  client connection: first-response-byte 57 last-response-byte 74

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626100 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:53 UTC
GET https://www.google.com/maps/vt/pb=!1m4!1m3!1i15!2i25935!3i15328!2m3!1e0!2sm!3i472181472!3m7!2sen!5e1105!12m4!1e68!2m2!1sset!2sRoadmap!4e1!5m4!1e4!8m2!1e0!1e1!6m7!1e12!2i2!26m1!4b1!39b1!44e1!50e0!23i1358902
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/maps/_/js/k=maps.mvw.en.oBwP3P9sCRA.O/m=npm,wte,vw/rt=j/d=1/ed=1/exm=/rs=ACT90oG134lDDND2DQyOF1P2mj2FO9watQ
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 1
    static categorization time: 1
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 76 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 1 elapsed 0 ms
    client-out: start 60 elapsed 0 ms
    access-logging: start 75 elapsed 1 ms
    stop-transaction: start 76 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 60 last_byte 75
  client connection: first-response-byte 60 last-response-byte 75

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626101 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:53 UTC
GET https://www.google.com/maps/vt/pb=!1m4!1m3!1i15!2i25935!3i15326!2m3!1e0!2sm!3i472181472!3m7!2sen!5e1105!12m4!1e68!2m2!1sset!2sRoadmap!4e0!5m1!1e0!23i1358902
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 1
    static categorization time: 1
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 83 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 1 elapsed 0 ms
    client-out: start 67 elapsed 0 ms
    access-logging: start 83 elapsed 0 ms
    stop-transaction: start 83 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 67 last_byte 83
  client connection: first-response-byte 67 last-response-byte 83

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626104 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:54 UTC
GET https://www.google.com/maps/vt/pb=!1m8!3m7!1m2!1u6639360!2u3923200!2m2!1u256!2u1024!3i15!2m3!1e0!2sm!3i472!3m2!2sen!5e1105!4e4!11m2!1e2!2b1
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 67 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 1 elapsed 0 ms
    client-out: start 67 elapsed 0 ms
    access-logging: start 67 elapsed 0 ms
    stop-transaction: start 67 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 67 last_byte 67
  client connection: first-response-byte 67 last-response-byte 67

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626102 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:54 UTC
GET https://www.google.com/maps/vt/pb=!1m4!1m3!1i15!2i25935!3i15327!2m3!1e0!2sm!3i472181472!3m7!2sen!5e1105!12m4!1e68!2m2!1sset!2sRoadmap!4e0!5m1!1e0!23i1358902
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 164 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 1 elapsed 0 ms
    client-out: start 146 elapsed 0 ms
    access-logging: start 163 elapsed 1 ms
    stop-transaction: start 164 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 146 last_byte 163
  client connection: first-response-byte 146 last-response-byte 163

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626103 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:54 UTC
GET https://www.google.com/maps/vt/pb=!1m4!1m3!1i15!2i25935!3i15328!2m3!1e0!2sm!3i472181472!3m7!2sen!5e1105!12m4!1e68!2m2!1sset!2sRoadmap!4e0!5m1!1e0!23i1358902
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 1
    static categorization time: 1
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 153 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 1 elapsed 0 ms
    client-out: start 132 elapsed 0 ms
    access-logging: start 152 elapsed 1 ms
    stop-transaction: start 153 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 132 last_byte 152
  client connection: first-response-byte 132 last-response-byte 152

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626106 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:56 UTC
CONNECT tcp://38.113.165.110:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 20 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 14 ms
    server-out: start 20 elapsed 0 ms
    client-out-terminated: start 20 elapsed 0 ms
    access-logging: start 20 elapsed 0 ms
    stop-transaction: start 20 elapsed 0 ms
    Total Policy evaluation time: 14 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 20
stop transaction --------------------
start transaction -------------------
transaction ID=1626107 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:56 UTC
CONNECT tcp://38.113.165.110:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 25 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 20 ms
    server-out: start 25 elapsed 0 ms
    client-out-terminated: start 25 elapsed 0 ms
    access-logging: start 25 elapsed 0 ms
    stop-transaction: start 25 elapsed 0 ms
    Total Policy evaluation time: 20 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 25
stop transaction --------------------
start transaction -------------------
transaction ID=1626109 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:56 UTC
CONNECT tcp://180.87.4.149:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626110 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:56 UTC
CONNECT tcp://66.110.49.34:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626112 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:57 UTC
GET https://www.google.com/maps/vt/pb=!1m8!3m7!1m2!1u1659136!2u980480!2m2!1u1024!2u1024!3i13!2m3!1e0!2sm!3i472!3m2!2sen!5e1105!4e4!11m2!1e2!2b1
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 304
client.response.code: 304
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 73 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 7 ms
    server-out: start 9 elapsed 0 ms
    server-in: start 9 elapsed 0 ms
    cache-hit: start 9 elapsed 0 ms
    client-out: start 72 elapsed 0 ms
    access-logging: start 72 elapsed 0 ms
    stop-transaction: start 73 elapsed 0 ms
    Total Policy evaluation time: 7 ms
  url_categorization complete time: 0
  server connection: start 9
    DNS Lookup: start 9 elapsed 0 ms
  server connection: connected 9 first-byte 72 last_byte 72
  client connection: first-response-byte 72 last-response-byte 72

Total time added: 8 ms
Total latency to first byte: 8 ms
   Request latency: 8 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626117 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:01 UTC
CONNECT tcp://180.87.4.153:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 12 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 7 ms
    server-out: start 11 elapsed 1 ms
    client-out-terminated: start 11 elapsed 1 ms
    access-logging: start 12 elapsed 0 ms
    stop-transaction: start 12 elapsed 0 ms
    Total Policy evaluation time: 9 ms
  url_categorization complete time: 0
  client connection: first-response-byte 0 last-response-byte 12
stop transaction --------------------
start transaction -------------------
transaction ID=1626116 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:01 UTC
CONNECT tcp://180.87.4.153:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 19 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 14 ms
    server-out: start 18 elapsed 0 ms
    client-out-terminated: start 18 elapsed 0 ms
    access-logging: start 18 elapsed 1 ms
    stop-transaction: start 19 elapsed 0 ms
    Total Policy evaluation time: 15 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 18
stop transaction --------------------
start transaction -------------------
transaction ID=1626118 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:01 UTC
CONNECT tcp://180.87.4.151:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626119 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:01 UTC
CONNECT tcp://66.110.49.74:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 1 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1625972 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.206 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:27 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{65b34054-ffff-ffff-284a-75262be495d7}/subscriptions/0/poll?ackId=1161
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.48.0.51 Chrome/66.0.3359.181 Electron/3.1.8 Safari/537.36
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 2
    static categorization time: 2
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 38590 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 2 elapsed 1 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 38589 elapsed 0 ms
    access-logging: start 38589 elapsed 1 ms
    stop-transaction: start 38590 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 2
  server connection: start 3
    DNS Lookup: start 3 elapsed 0 ms
  server connection: connected 3 first-byte 38589 last_byte 38589
  client connection: first-response-byte 38589 last-response-byte 38589

Total time added: 1 ms
Total latency to first byte: 1 ms
   Request latency: 1 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626125 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:06 UTC
CONNECT tcp://66.110.49.36:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 3 elapsed 1 ms
    client-out-terminated: start 3 elapsed 1 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626126 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:06 UTC
CONNECT tcp://66.110.49.36:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 3 elapsed 1 ms
    client-out-terminated: start 3 elapsed 1 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626127 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:07 UTC
CONNECT tcp://38.113.165.113:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626128 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:07 UTC
CONNECT tcp://66.110.49.72:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626132 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:12 UTC
CONNECT tcp://38.113.165.110:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 3 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 2 elapsed 0 ms
    client-out-terminated: start 2 elapsed 0 ms
    access-logging: start 2 elapsed 1 ms
    stop-transaction: start 3 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 0
  client connection: first-response-byte 0 last-response-byte 2
stop transaction --------------------
start transaction -------------------
transaction ID=1626133 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:12 UTC
CONNECT tcp://38.113.165.110:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626134 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:12 UTC
CONNECT tcp://180.87.4.149:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626136 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:12 UTC
CONNECT tcp://66.110.49.34:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1625978 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:35 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{07be9275-9723-4ff6-886f-840979528369}/subscriptions/0/poll?ackId=1118
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.34.0.78 Chrome/61.0.3163.100 Electron/2.0.11 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 38335 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 2 elapsed 1 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 38334 elapsed 0 ms
    access-logging: start 38334 elapsed 1 ms
    stop-transaction: start 38335 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 1
  server connection: start 3
    DNS Lookup: start 3 elapsed 0 ms
  server connection: connected 3 first-byte 38334 last_byte 38334
  client connection: first-response-byte 38334 last-response-byte 38334

Total time added: 2 ms
Total latency to first byte: 2 ms
   Request latency: 2 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626042 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:49 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 25143 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 25143 elapsed 0 ms
    client-out: start 25143 elapsed 0 ms
    access-logging: start 25143 elapsed 0 ms
    stop-transaction: start 25143 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 25143 last_byte 25143
  client connection: first-response-byte 25143 last-response-byte 25143

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626139 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:14 UTC
CONNECT tcp://180.87.4.153:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 1 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626141 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:14 UTC
CONNECT tcp://180.87.4.153:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 3 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 3 elapsed 0 ms
    client-out-terminated: start 3 elapsed 0 ms
    access-logging: start 3 elapsed 0 ms
    stop-transaction: start 3 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  client connection: first-response-byte 0 last-response-byte 3
stop transaction --------------------
start transaction -------------------
transaction ID=1626138 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:14 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{07be9275-9723-4ff6-886f-840979528369}/active
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.34.0.78 Chrome/61.0.3163.100 Electron/2.0.11 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 201
client.response.code: 201
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 217 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 1 ms
    server-in: start 2 elapsed 0 ms
    client-out: start 217 elapsed 0 ms
    access-logging: start 217 elapsed 0 ms
    stop-transaction: start 217 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  server connection: start 2
    DNS Lookup: start 2 elapsed 0 ms
  server connection: connected 2 first-byte 217 last_byte 217
  client connection: first-response-byte 217 last-response-byte 217

Total time added: 1 ms
Total latency to first byte: 1 ms
   Request latency: 1 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626143 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:16 UTC
CONNECT tcp://180.87.4.151:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626144 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:16 UTC
CONNECT tcp://66.110.49.74:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626145 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:16 UTC
CONNECT tcp://66.110.49.36:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626146 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:16 UTC
CONNECT tcp://38.113.165.113:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626147 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:16 UTC
CONNECT tcp://66.110.49.72:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626148 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:16 UTC
CONNECT tcp://38.113.165.110:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626151 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:17 UTC
CONNECT tcp://180.87.4.149:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 1 ms
    client-out-terminated: start 4 elapsed 1 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626152 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:17 UTC
CONNECT tcp://180.87.4.149:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 6 elapsed 0 ms
    client-out-terminated: start 6 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626153 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:17 UTC
CONNECT tcp://66.110.49.34:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 3 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 3 elapsed 0 ms
    client-out-terminated: start 3 elapsed 0 ms
    access-logging: start 3 elapsed 0 ms
    stop-transaction: start 3 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 3
stop transaction --------------------
start transaction -------------------
transaction ID=1626154 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:17 UTC
CONNECT tcp://180.87.4.153:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626155 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:18 UTC
CONNECT tcp://180.87.4.210:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626157 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:20 UTC
CONNECT tcp://180.87.4.212:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626161 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:22 UTC
CONNECT tcp://180.87.4.151:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626162 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:22 UTC
CONNECT tcp://180.87.4.151:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 3 elapsed 0 ms
    server-out: start 6 elapsed 0 ms
    client-out-terminated: start 6 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 3
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626163 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:22 UTC
CONNECT tcp://66.110.49.74:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 3 elapsed 0 ms
    client-out-terminated: start 3 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626164 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:22 UTC
CONNECT tcp://66.110.49.36:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626168 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:27 UTC
CONNECT tcp://38.113.165.113:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626169 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:27 UTC
CONNECT tcp://38.113.165.113:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626170 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:27 UTC
CONNECT tcp://66.110.49.72:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626171 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:27 UTC
CONNECT tcp://180.87.4.149:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626172 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:28 UTC
CONNECT tcp://clientservices.googleapis.com:443/
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 14 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 1 ms
    access-logging: start 14 elapsed 0 ms
    stop-transaction: start 14 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 14
stop transaction --------------------
start transaction -------------------
transaction ID=1626175 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:28 UTC
CONNECT tcp://66.110.49.34:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626173 type=ssl.tunnel
transaction handed off from: 1626172

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:28 UTC
unknown ssl://clientservices.googleapis.com:443/
origin server next-hop IP address=172.217.24.163
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 103 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    stop-transaction: start 103 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  ssl server hello complete: 103
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 52

Total time added: 0 ms
Total latency to first byte: 51 ms
   Request latency: 0 ms
  OCS connect time: 51 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626176 type=https.forward-proxy
transaction handed off from: 1626174

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:28 UTC
GET https://clientservices.googleapis.com/chrome-variations/seed?osname=win&channel=stable&milestone=75
origin server next-hop IP address=172.217.24.163
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 313 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 10 elapsed 0 ms
    server-out: start 10 elapsed 0 ms
    server-in: start 10 elapsed 1 ms
    client-out: start 230 elapsed 0 ms
    access-logging: start 312 elapsed 1 ms
    stop-transaction: start 313 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 10
  server connection: start 10
    DNS Lookup: start 10 elapsed 0 ms
  server connection: connected 10 first-byte 230 last_byte 312
  client connection: first-response-byte 230 last-response-byte 312

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626181 type=ssl.tunnel
transaction handed off from: 1626180

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.3 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:31 UTC
unknown ssl://sn2-client-s.gateway.messenger.live.com:443/
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626180 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.3 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:31 UTC
CONNECT tcp://sn2-client-s.gateway.messenger.live.com:443/
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 508 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 11 ms
    client-out-terminated: start 12 elapsed 0 ms
    access-logging: start 16 elapsed 1 ms
    stop-transaction: start 508 elapsed 0 ms
    Total Policy evaluation time: 12 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 16
stop transaction --------------------
start transaction -------------------
transaction ID=1626185 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:32 UTC
CONNECT tcp://66.110.49.34:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 7 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 3 elapsed 1 ms
    server-out: start 6 elapsed 1 ms
    client-out-terminated: start 6 elapsed 1 ms
    access-logging: start 7 elapsed 0 ms
    stop-transaction: start 7 elapsed 0 ms
    Total Policy evaluation time: 3 ms
  url_categorization complete time: 3
  client connection: first-response-byte 0 last-response-byte 7
stop transaction --------------------
start transaction -------------------
transaction ID=1626186 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:32 UTC
CONNECT tcp://66.110.49.34:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 3 elapsed 0 ms
    server-out: start 6 elapsed 0 ms
    client-out-terminated: start 6 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626187 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:32 UTC
CONNECT tcp://180.87.4.151:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626188 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:32 UTC
CONNECT tcp://66.110.49.74:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626190 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:33 UTC
CONNECT tcp://66.110.49.36:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626191 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:33 UTC
CONNECT tcp://66.110.49.36:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626189 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:33 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 182 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 182 elapsed 0 ms
    client-out: start 182 elapsed 0 ms
    access-logging: start 182 elapsed 0 ms
    stop-transaction: start 182 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 182 last_byte 182
  client connection: first-response-byte 182 last-response-byte 182

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626193 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:34 UTC
CONNECT tcp://38.113.165.113:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 3 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 3 elapsed 0 ms
    client-out-terminated: start 3 elapsed 0 ms
    access-logging: start 3 elapsed 0 ms
    stop-transaction: start 3 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 3
stop transaction --------------------
start transaction -------------------
transaction ID=1626192 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.206 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:34 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{65b34054-ffff-ffff-284a-75262be495d7}/active
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.48.0.51 Chrome/66.0.3359.181 Electron/3.1.8 Safari/537.36
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 201
client.response.code: 201
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 223 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 8 ms
    server-out: start 9 elapsed 1 ms
    server-in: start 10 elapsed 0 ms
    client-out: start 222 elapsed 0 ms
    access-logging: start 222 elapsed 0 ms
    stop-transaction: start 222 elapsed 1 ms
    Total Policy evaluation time: 10 ms
  url_categorization complete time: 1
  server connection: start 10
    DNS Lookup: start 10 elapsed 0 ms
  server connection: connected 10 first-byte 222 last_byte 222
  client connection: first-response-byte 222 last-response-byte 222

Total time added: 9 ms
Total latency to first byte: 9 ms
   Request latency: 9 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626197 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:37 UTC
CONNECT tcp://66.110.49.72:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626198 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:37 UTC
CONNECT tcp://66.110.49.72:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 1 ms
    client-out-terminated: start 4 elapsed 1 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626199 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:37 UTC
CONNECT tcp://66.110.49.74:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626140 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:14 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 25028 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 25028 elapsed 0 ms
    client-out: start 25028 elapsed 0 ms
    access-logging: start 25028 elapsed 0 ms
    stop-transaction: start 25028 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 25028 last_byte 25028
  client connection: first-response-byte 25028 last-response-byte 25028

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626122 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.206 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:06 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{65b34054-ffff-ffff-284a-75262be495d7}/subscriptions/0/poll?ackId=1161
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.48.0.51 Chrome/66.0.3359.181 Electron/3.1.8 Safari/537.36
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 2
    static categorization time: 2
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 38566 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 2 elapsed 1 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 38565 elapsed 0 ms
    access-logging: start 38565 elapsed 1 ms
    stop-transaction: start 38566 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 2
  server connection: start 3
    DNS Lookup: start 3 elapsed 0 ms
  server connection: connected 3 first-byte 38565 last_byte 38565
  client connection: first-response-byte 38565 last-response-byte 38565

Total time added: 1 ms
Total latency to first byte: 1 ms
   Request latency: 1 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626207 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:46 UTC
CONNECT tcp://180.87.4.145:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 1 ms
    server-out: start 6 elapsed 0 ms
    client-out-terminated: start 6 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626208 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:46 UTC
CONNECT tcp://180.87.4.141:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 1 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626209 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:46 UTC
CONNECT tcp://66.110.49.22:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 1 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626210 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:46 UTC
CONNECT tcp://180.87.4.143:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 1 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626211 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:46 UTC
CONNECT tcp://180.87.4.214:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626212 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:46 UTC
CONNECT tcp://38.113.165.183:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626213 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:46 UTC
CONNECT tcp://66.110.49.68:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626214 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:46 UTC
CONNECT tcp://180.87.4.145:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626028 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:48 UTC
CONNECT tcp://fonts.gstatic.com:443/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 60495 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    client-out-terminated: start 2 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 60495 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626016 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:48 UTC
CONNECT tcp://ssl.gstatic.com:443/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 60517 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    client-out-terminated: start 2 elapsed 0 ms
    access-logging: start 7 elapsed 0 ms
    stop-transaction: start 60517 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 7
stop transaction --------------------
start transaction -------------------
transaction ID=1626026 type=ssl.tunnel
transaction handed off from: 1626025

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:00:48 UTC
unknown ssl://maps.gstatic.com:443/
origin server next-hop IP address=172.217.31.67
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 60547 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    access-logging: start 60547 elapsed 0 ms
    stop-transaction: start 60547 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  ssl server hello complete: 119
  url_categorization complete time: 1
  ssl_server started tunnel: 174
  server connection: start 1
    DNS Lookup: start 125 elapsed 0 ms
  server connection: connected 53
  client connection: first-response-byte 0 last-response-byte 60547

Total time added: 0 ms
Total latency to first byte: 52 ms
   Request latency: 0 ms
  OCS connect time: 52 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626218 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:48 UTC
GET https://www.google.com/gen_204?v=3&s=tactile&action=bootstrap_performance_flow&tran=16&conn=onchange&cad=chl:1,it:1,ifps:0.00,tt:0,fua:mousedown,fuat:inline-tile-container,jsv:20190625.0,cz:15,w:1366,h:695,ct:1,sc:0,drv:m&e=10200084,10202681,10202724,10202733,10202786,10202788,10202851,10202892,10202920,10202942,10202959,10203002,10203007,10203031,10203043,10203047,10203060,10203074,10203081,10203089,10203090&atyp=csi&ei=4IIVXZvVDJ2YvQTy0Yz4Cg&rt=itl0.312,itl1.379,gna.1617,itp.1620,tmout.60252
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 1
    static categorization time: 1
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 204
client.response.code: 204
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 75 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 8 ms
    server-out: start 9 elapsed 0 ms
    server-in: start 15 elapsed 0 ms
    client-out: start 75 elapsed 0 ms
    access-logging: start 75 elapsed 0 ms
    stop-transaction: start 75 elapsed 0 ms
    Total Policy evaluation time: 8 ms
  url_categorization complete time: 1
  server connection: start 9
    DNS Lookup: start 10 elapsed 5 ms
  server connection: connected 15 first-byte 75 last_byte 75
  client connection: first-response-byte 75 last-response-byte 75

Total time added: 8 ms
Total latency to first byte: 14 ms
   Request latency: 8 ms
  OCS connect time: 6 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626217 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:48 UTC
GET https://ads.viber.com/v2/ads/fetch?adloc=8&appId=902&appSecret=d8c7d85fb4430f497a844ac776b7db24&loc=en&count=1&ver=10.9.0&vboCredit=0&daysFromActivation=0&foreground=0&ua=Mozilla/4.0+(compatible;+MSIE+7.0;+Windows+NT+10.0;+WOW64;+Trident/7.0;+.NET4.0C;+.NET4.0E;+InfoPath.3)&aid=7f131ec8fd13a40c59dca83f827de294e24d45ab&video=1&banner=1&adapter=0
origin server next-hop IP address=52.206.72.255
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) QtWebEngine/5.12.3 Chrome/69.0.3497.128 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Internet Telephony@Blue Coat;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Internet Telephony@Blue Coat;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1044 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 794 elapsed 0 ms
    client-out: start 1043 elapsed 0 ms
    access-logging: start 1043 elapsed 1 ms
    stop-transaction: start 1044 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 1 ms
  server connection: connected 794 first-byte 1043 last_byte 1043
  client connection: first-response-byte 1043 last-response-byte 1043

Total time added: 0 ms
Total latency to first byte: 793 ms
   Request latency: 0 ms
  OCS connect time: 793 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626220 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:49 UTC
GET https://www.google.com/maps/preview/log204?authuser=0&hl=en&gl=kh&pb=!6m1!4e1!8m70!23m6!1i11!2i4!3f220.535004!4f0!5i1!6i220!23m6!1i14!2i4!3f3.833333!4f32.296162!5i3!6i10!23m6!1i16!2i4!3f6.955!4f0!5i1!6i6!23m6!1i26!2i4!3f91.669998!4f0!5i1!6i91!23m6!1i27!2i4!3f19.27!4f0!5i1!6i19!23m6!1i31!2i4!3f3.3225!4f19.316008!5i4!6i11!23m6!1i33!2i4!3f0.735!4f0.1568!5i2!6i1!23m6!1i84!2i4!3f1.4!4f0!5i1!6i1!23m6!1i87!2i4!3f2.304706!4f6.546789!5i17!6i31!23m6!1i106!2i4!3f0.775!4f0!5i1!6i0!11m3!1s4IIVXZvVDJ2YvQTy0Yz4Cg!7e81!15i8899
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 204
client.response.code: 204
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 86 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 1 elapsed 0 ms
    client-out: start 85 elapsed 0 ms
    access-logging: start 85 elapsed 1 ms
    stop-transaction: start 86 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 85 last_byte 85
  client connection: first-response-byte 85 last-response-byte 85

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626219 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:49 UTC
GET https://www.google.com/maps/preview/log204?authuser=0&hl=en&gl=kh&pb=!6m1!4e1!8m14!23m6!1i2!2i3!3f1.541222!4f12.294034!5i45!6i57!23m6!1i3!2i3!3f0.427857!4f0.182267!5i28!6i2!11m3!1s4IIVXZvVDJ2YvQTy0Yz4Cg!7e81!15i8899
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 204
client.response.code: 204
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 91 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 1 elapsed 0 ms
    client-out: start 91 elapsed 0 ms
    access-logging: start 91 elapsed 0 ms
    stop-transaction: start 91 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 90 last_byte 90
  client connection: first-response-byte 91 last-response-byte 91

Total time added: 1 ms
Total latency to first byte: 1 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 1 ms
   Response latency (last byte): 1 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626222 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:49 UTC
GET https://www.google.com/maps/preview/log204?authuser=0&hl=en&gl=kh&pb=!6m1!4e1!8m7!23m6!1i24!2i6!3f0.435!4f0!5i1!6i0!11m3!1s4IIVXZvVDJ2YvQTy0Yz4Cg!7e81!15i8899
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 204
client.response.code: 204
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 88 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 1 elapsed 0 ms
    client-out: start 88 elapsed 0 ms
    access-logging: start 88 elapsed 0 ms
    stop-transaction: start 88 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 88 last_byte 88
  client connection: first-response-byte 88 last-response-byte 88

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626221 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:49 UTC
GET https://www.google.com/maps/preview/log204?authuser=0&hl=en&gl=kh&pb=!6m1!4e1!8m28!23m6!1i7!2i5!3f1.195225!4f1.772612!5i111!6i80!23m6!1i20!2i5!3f1.8775!4f5.300935!5i12!6i17!23m6!1i21!2i5!3f0.490065!4f0.61288!5i77!6i15!23m6!1i23!2i5!3f0.825!4f0.966325!5i3!6i1!11m3!1s4IIVXZvVDJ2YvQTy0Yz4Cg!7e81!15i8899
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 204
client.response.code: 204
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 93 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 1 elapsed 0 ms
    client-out: start 93 elapsed 0 ms
    access-logging: start 93 elapsed 0 ms
    stop-transaction: start 93 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 92 last_byte 92
  client connection: first-response-byte 93 last-response-byte 93

Total time added: 1 ms
Total latency to first byte: 1 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 1 ms
   Response latency (last byte): 1 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626224 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:50 UTC
CONNECT tcp://180.87.4.210:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 15 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 10 ms
    server-out: start 15 elapsed 0 ms
    client-out-terminated: start 15 elapsed 0 ms
    access-logging: start 15 elapsed 0 ms
    stop-transaction: start 15 elapsed 0 ms
    Total Policy evaluation time: 10 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 15
stop transaction --------------------
start transaction -------------------
transaction ID=1626225 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:50 UTC
CONNECT tcp://180.87.4.141:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 20 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 16 ms
    server-out: start 20 elapsed 0 ms
    client-out-terminated: start 20 elapsed 0 ms
    access-logging: start 20 elapsed 0 ms
    stop-transaction: start 20 elapsed 0 ms
    Total Policy evaluation time: 16 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 20
stop transaction --------------------
start transaction -------------------
transaction ID=1626226 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:50 UTC
CONNECT tcp://66.110.49.22:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626227 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:50 UTC
CONNECT tcp://180.87.4.143:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626228 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:50 UTC
CONNECT tcp://180.87.4.214:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 3 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 3
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626229 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:50 UTC
CONNECT tcp://38.113.165.183:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626230 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:50 UTC
CONNECT tcp://66.110.49.68:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 3 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 3
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626231 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:50 UTC
CONNECT tcp://180.87.4.145:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 1 ms
    server-out: start 3 elapsed 1 ms
    client-out-terminated: start 3 elapsed 1 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 3 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626232 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:50 UTC
CONNECT tcp://180.87.4.141:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 1 ms
    server-out: start 4 elapsed 1 ms
    client-out-terminated: start 4 elapsed 1 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 3 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626137 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:14 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{07be9275-9723-4ff6-886f-840979528369}/subscriptions/0/poll?ackId=1118
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.34.0.78 Chrome/61.0.3163.100 Electron/2.0.11 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 2
    static categorization time: 2
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 38676 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 2 elapsed 1 ms
    server-in: start 4 elapsed 0 ms
    client-out: start 38675 elapsed 0 ms
    access-logging: start 38675 elapsed 1 ms
    stop-transaction: start 38676 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 2
  server connection: start 3
    DNS Lookup: start 4 elapsed 0 ms
  server connection: connected 4 first-byte 38675 last_byte 38675
  client connection: first-response-byte 38675 last-response-byte 38675

Total time added: 1 ms
Total latency to first byte: 2 ms
   Request latency: 1 ms
  OCS connect time: 1 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626206 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.206 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:44 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{65b34054-ffff-ffff-284a-75262be495d7}/subscriptions/0/poll?ackId=1161
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.48.0.51 Chrome/66.0.3359.181 Electron/3.1.8 Safari/537.36
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 2
    static categorization time: 2
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 12892 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 2 elapsed 1 ms
    server-in: start 4 elapsed 0 ms
    client-out: start 12890 elapsed 0 ms
    access-logging: start 12891 elapsed 1 ms
    stop-transaction: start 12892 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 2
  server connection: start 3
    DNS Lookup: start 3 elapsed 1 ms
  server connection: connected 4 first-byte 12890 last_byte 12890
  client connection: first-response-byte 12891 last-response-byte 12891

Total time added: 2 ms
Total latency to first byte: 3 ms
   Request latency: 1 ms
  OCS connect time: 1 ms
  Response latency (first byte): 1 ms
   Response latency (last byte): 1 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626200 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:39 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 25032 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 25031 elapsed 0 ms
    client-out: start 25031 elapsed 0 ms
    access-logging: start 25031 elapsed 1 ms
    stop-transaction: start 25032 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 25031 last_byte 25031
  client connection: first-response-byte 25031 last-response-byte 25031

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626245 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:04 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 61 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 61 elapsed 0 ms
    client-out: start 61 elapsed 0 ms
    access-logging: start 61 elapsed 0 ms
    stop-transaction: start 61 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 60 last_byte 61
  client connection: first-response-byte 61 last-response-byte 61

Total time added: 0 ms
Total latency to first byte: 1 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 1 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626255 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:16 UTC
CONNECT tcp://66.110.49.22:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 1 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626256 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:16 UTC
CONNECT tcp://180.87.4.143:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626257 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:16 UTC
CONNECT tcp://180.87.4.214:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626258 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:16 UTC
CONNECT tcp://38.113.165.183:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626259 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:16 UTC
CONNECT tcp://66.110.49.68:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626260 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:16 UTC
CONNECT tcp://180.87.4.145:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626261 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:16 UTC
CONNECT tcp://180.87.4.141:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626262 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:16 UTC
CONNECT tcp://66.110.49.22:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626266 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:20 UTC
CONNECT tcp://180.87.4.143:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 3 elapsed 0 ms
    client-out-terminated: start 3 elapsed 0 ms
    access-logging: start 3 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 3
stop transaction --------------------
start transaction -------------------
transaction ID=1626267 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:20 UTC
CONNECT tcp://38.113.165.80:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626268 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:20 UTC
CONNECT tcp://180.87.4.214:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626269 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:20 UTC
CONNECT tcp://38.113.165.183:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626270 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:20 UTC
CONNECT tcp://66.110.49.68:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 6 elapsed 0 ms
    client-out-terminated: start 6 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626271 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:20 UTC
CONNECT tcp://180.87.4.145:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626272 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:20 UTC
CONNECT tcp://180.87.4.141:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626273 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:20 UTC
CONNECT tcp://66.110.49.22:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626274 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:20 UTC
CONNECT tcp://180.87.4.143:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626246 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:04 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 25032 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 25031 elapsed 0 ms
    client-out: start 25031 elapsed 0 ms
    access-logging: start 25031 elapsed 1 ms
    stop-transaction: start 25032 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 25031 last_byte 25031
  client connection: first-response-byte 25031 last-response-byte 25031

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626236 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:52 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{07be9275-9723-4ff6-886f-840979528369}/subscriptions/0/poll?ackId=1118
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.34.0.78 Chrome/61.0.3163.100 Electron/2.0.11 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 38600 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 1 ms
    server-out: start 2 elapsed 1 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 38599 elapsed 0 ms
    access-logging: start 38599 elapsed 1 ms
    stop-transaction: start 38600 elapsed 0 ms
    Total Policy evaluation time: 3 ms
  url_categorization complete time: 1
  server connection: start 3
    DNS Lookup: start 3 elapsed 0 ms
  server connection: connected 3 first-byte 38599 last_byte 38599
  client connection: first-response-byte 38599 last-response-byte 38599

Total time added: 2 ms
Total latency to first byte: 2 ms
   Request latency: 2 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626240 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.206 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:01:57 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{65b34054-ffff-ffff-284a-75262be495d7}/subscriptions/0/poll?ackId=1165
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.48.0.51 Chrome/66.0.3359.181 Electron/3.1.8 Safari/537.36
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 38374 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 2 elapsed 1 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 38373 elapsed 0 ms
    access-logging: start 38373 elapsed 1 ms
    stop-transaction: start 38374 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 1
  server connection: start 3
    DNS Lookup: start 3 elapsed 0 ms
  server connection: connected 3 first-byte 38373 last_byte 38373
  client connection: first-response-byte 38373 last-response-byte 38373

Total time added: 1 ms
Total latency to first byte: 1 ms
   Request latency: 1 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626291 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:39 UTC
GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?1ba525e3f0b82f3f
User-Agent: Microsoft-CryptoAPI/10.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Non-Viewable/Infrastructure@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 403
application.name: Microsoft Update
application.operation: Update Software
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 14 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 3 elapsed 10 ms
    client-out-terminated: start 13 elapsed 0 ms
    access-logging: start 13 elapsed 1 ms
    stop-transaction: start 14 elapsed 0 ms
    Total Policy evaluation time: 11 ms
  url_categorization complete time: 3
  client connection: first-response-byte 0 last-response-byte 13
stop transaction --------------------
start transaction -------------------
transaction ID=1626292 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:39 UTC
GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab?e429ef5886f16002
User-Agent: Microsoft-CryptoAPI/10.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Non-Viewable/Infrastructure@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 403
application.name: Microsoft Update
application.operation: Update Software
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    access-logging: start 1 elapsed 0 ms
    stop-transaction: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  client connection: first-response-byte 0 last-response-byte 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626299 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:47 UTC
CONNECT tcp://180.87.4.214:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 13 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 9 ms
    server-out: start 13 elapsed 0 ms
    client-out-terminated: start 13 elapsed 0 ms
    access-logging: start 13 elapsed 0 ms
    stop-transaction: start 13 elapsed 0 ms
    Total Policy evaluation time: 9 ms
  url_categorization complete time: 0
  client connection: first-response-byte 0 last-response-byte 13
stop transaction --------------------
start transaction -------------------
transaction ID=1626300 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:47 UTC
CONNECT tcp://38.113.165.183:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626302 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:47 UTC
CONNECT tcp://66.110.49.68:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626303 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:49 UTC
GET https://www.google.com/maps/preview/log204?authuser=0&hl=en&gl=kh&pb=!6m1!4e1!8m7!23m6!1i3!2i3!3f2.9225!4f22.350093!5i4!6i10!11m3!1s4IIVXZvVDJ2YvQTy0Yz4Cg!7e81!15i8899
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 1
    static categorization time: 1
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 204
client.response.code: 204
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 93 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 7 ms
    server-out: start 8 elapsed 0 ms
    server-in: start 8 elapsed 0 ms
    client-out: start 92 elapsed 0 ms
    access-logging: start 92 elapsed 0 ms
    stop-transaction: start 93 elapsed 0 ms
    Total Policy evaluation time: 7 ms
  url_categorization complete time: 1
  server connection: start 8
    DNS Lookup: start 8 elapsed 0 ms
  server connection: connected 8 first-byte 92 last_byte 92
  client connection: first-response-byte 92 last-response-byte 92

Total time added: 7 ms
Total latency to first byte: 7 ms
   Request latency: 7 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626304 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:49 UTC
GET https://www.google.com/maps/preview/log204?authuser=0&hl=en&gl=kh&pb=!6m1!4e1!8m14!23m6!1i31!2i4!3f0.863333!4f0.977875!5i9!6i5!23m6!1i106!2i4!3f0.15!4f0!5i1!6i0!11m3!1s4IIVXZvVDJ2YvQTy0Yz4Cg!7e81!15i8899
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 204
client.response.code: 204
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 101 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 12 ms
    server-out: start 14 elapsed 0 ms
    server-in: start 14 elapsed 0 ms
    client-out: start 100 elapsed 0 ms
    access-logging: start 100 elapsed 1 ms
    stop-transaction: start 101 elapsed 0 ms
    Total Policy evaluation time: 13 ms
  url_categorization complete time: 0
  server connection: start 14
    DNS Lookup: start 14 elapsed 0 ms
  server connection: connected 14 first-byte 100 last_byte 100
  client connection: first-response-byte 100 last-response-byte 100

Total time added: 13 ms
Total latency to first byte: 13 ms
   Request latency: 13 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626306 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:49 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 171 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 7 ms
    server-out: start 8 elapsed 0 ms
    server-in: start 171 elapsed 0 ms
    client-out: start 171 elapsed 0 ms
    access-logging: start 171 elapsed 0 ms
    stop-transaction: start 171 elapsed 0 ms
    Total Policy evaluation time: 7 ms
  url_categorization complete time: 0
  server connection: start 8
    DNS Lookup: start 8 elapsed 0 ms
  server connection: connected 8 first-byte 171 last_byte 171
  client connection: first-response-byte 171 last-response-byte 171

Total time added: 7 ms
Total latency to first byte: 7 ms
   Request latency: 7 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626305 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:49 UTC
GET https://ads.viber.com/v2/ads/fetch?adloc=8&appId=902&appSecret=d8c7d85fb4430f497a844ac776b7db24&loc=en&count=1&ver=10.9.0&vboCredit=0&daysFromActivation=0&foreground=0&ua=Mozilla/4.0+(compatible;+MSIE+7.0;+Windows+NT+10.0;+WOW64;+Trident/7.0;+.NET4.0C;+.NET4.0E;+InfoPath.3)&aid=7f131ec8fd13a40c59dca83f827de294e24d45ab&video=1&banner=1&adapter=0
origin server next-hop IP address=52.206.72.255
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) QtWebEngine/5.12.3 Chrome/69.0.3497.128 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Internet Telephony@Blue Coat;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Internet Telephony@Blue Coat;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1008 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 753 elapsed 0 ms
    client-out: start 1007 elapsed 0 ms
    access-logging: start 1007 elapsed 1 ms
    stop-transaction: start 1008 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 1 ms
  server connection: connected 753 first-byte 1007 last_byte 1007
  client connection: first-response-byte 1007 last-response-byte 1007

Total time added: 0 ms
Total latency to first byte: 752 ms
   Request latency: 0 ms
  OCS connect time: 752 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626326 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:51 UTC
CONNECT tcp://38.113.165.77:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 6 elapsed 0 ms
    client-out-terminated: start 6 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626352 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:54 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{07be9275-9723-4ff6-886f-840979528369}/active
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.34.0.78 Chrome/61.0.3163.100 Electron/2.0.11 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 2
    static categorization time: 2
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 201
client.response.code: 201
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 216 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 2 elapsed 1 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 215 elapsed 0 ms
    access-logging: start 216 elapsed 0 ms
    stop-transaction: start 216 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 2
  server connection: start 3
    DNS Lookup: start 3 elapsed 0 ms
  server connection: connected 3 first-byte 215 last_byte 215
  client connection: first-response-byte 216 last-response-byte 216

Total time added: 2 ms
Total latency to first byte: 2 ms
   Request latency: 1 ms
  OCS connect time: 0 ms
  Response latency (first byte): 1 ms
   Response latency (last byte): 1 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626281 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:29 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 25033 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 25032 elapsed 0 ms
    client-out: start 25032 elapsed 0 ms
    access-logging: start 25032 elapsed 1 ms
    stop-transaction: start 25033 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 25032 last_byte 25032
  client connection: first-response-byte 25032 last-response-byte 25032

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626357 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:57 UTC
CONNECT tcp://clients4.google.com:443/
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 15 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    access-logging: start 15 elapsed 0 ms
    stop-transaction: start 15 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 15
stop transaction --------------------
start transaction -------------------
transaction ID=1626358 type=ssl.tunnel
transaction handed off from: 1626357

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:57 UTC
unknown ssl://clients4.google.com:443/
origin server next-hop IP address=216.58.196.14
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 138 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    stop-transaction: start 138 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  ssl server hello complete: 135
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 1 ms
  server connection: connected 64

Total time added: 0 ms
Total latency to first byte: 63 ms
   Request latency: 0 ms
  OCS connect time: 63 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626360 type=https.forward-proxy
transaction handed off from: 1626359

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:57 UTC
POST https://clients4.google.com/chrome-sync/experimentstatus
origin server next-hop IP address=216.58.196.14
User-Agent: Chrome WIN 75.0.3770.100 (cd0b15c8b6a4e70c44e27f35c37a4029bad3e3b0-refs/branch-heads/3770@{#1033}) channel(stable)
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 206 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 19 elapsed 0 ms
    server-out: start 81 elapsed 0 ms
    server-in: start 81 elapsed 0 ms
    client-out: start 204 elapsed 0 ms
    access-logging: start 206 elapsed 0 ms
    stop-transaction: start 206 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 19
  server connection: start 81
    DNS Lookup: start 81 elapsed 0 ms
  server connection: connected 81 first-byte 204 last_byte 206
  client connection: first-response-byte 204 last-response-byte 206

Total time added: 62 ms
Total latency to first byte: 62 ms
   Request latency: 62 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626362 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:00 UTC
CONNECT tcp://mtalk.google.com:5228/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: Google Hangouts
application.operation: none
application.group: Instant Messaging;VoIP
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 11 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    access-logging: start 11 elapsed 0 ms
    stop-transaction: start 11 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 11
stop transaction --------------------
start transaction -------------------
transaction ID=1626363 type=ssl.tunnel
transaction handed off from: 1626362

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:00 UTC
unknown ssl://mtalk.google.com:5228/
origin server next-hop IP address=74.125.200.188
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
application.name: Google Hangouts
application.operation: none
application.group: Instant Messaging;VoIP
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 104 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    stop-transaction: start 104 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  ssl server hello complete: 102
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 3 ms
  server connection: connected 53

Total time added: 0 ms
Total latency to first byte: 52 ms
   Request latency: 0 ms
  OCS connect time: 52 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626368 type=https.forward-proxy
transaction handed off from: 1626364

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:00 UTC
unknown ssl://mtalk.google.com:5228/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(invalid_request): Request could not be handled
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 400
application.name: Google Hangouts
application.operation: none
application.group: Instant Messaging;VoIP
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 19 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    server-in: start 18 elapsed 0 ms
    client-out-terminated: start 18 elapsed 0 ms
    access-logging: start 18 elapsed 1 ms
    stop-transaction: start 19 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 18
  client connection: first-response-byte 0 last-response-byte 18
stop transaction --------------------
start transaction -------------------
transaction ID=1626285 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:31 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{07be9275-9723-4ff6-886f-840979528369}/subscriptions/0/poll?ackId=1118
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.34.0.78 Chrome/61.0.3163.100 Electron/2.0.11 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 2
    static categorization time: 2
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 38437 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 2 elapsed 2 ms
    server-in: start 4 elapsed 0 ms
    client-out: start 38435 elapsed 0 ms
    access-logging: start 38436 elapsed 0 ms
    stop-transaction: start 38437 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 2
  server connection: start 4
    DNS Lookup: start 4 elapsed 0 ms
  server connection: connected 4 first-byte 38435 last_byte 38435
  client connection: first-response-byte 38435 last-response-byte 38436

Total time added: 3 ms
Total latency to first byte: 2 ms
   Request latency: 2 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 1 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626380 type=ssl.tunnel
transaction handed off from: 1626379

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.3 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:11 UTC
unknown ssl://browser.pipe.aria.microsoft.com:443/
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626383 type=ssl.tunnel
transaction handed off from: 1626382

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.3 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:11 UTC
unknown ssl://sn2-client-s.gateway.messenger.live.com:443/
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626382 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.3 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:11 UTC
CONNECT tcp://sn2-client-s.gateway.messenger.live.com:443/
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 593 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    access-logging: start 5 elapsed 1 ms
    stop-transaction: start 593 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626379 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.3 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:11 UTC
CONNECT tcp://browser.pipe.aria.microsoft.com:443/
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 638 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 12 ms
    client-out-terminated: start 14 elapsed 0 ms
    access-logging: start 26 elapsed 1 ms
    stop-transaction: start 638 elapsed 0 ms
    Total Policy evaluation time: 13 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 26
stop transaction --------------------
start transaction -------------------
transaction ID=1626388 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.206 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:14 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{65b34054-ffff-ffff-284a-75262be495d7}/active
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.48.0.51 Chrome/66.0.3359.181 Electron/3.1.8 Safari/537.36
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 201
client.response.code: 201
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 220 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 6 ms
    server-out: start 7 elapsed 1 ms
    server-in: start 8 elapsed 0 ms
    client-out: start 219 elapsed 0 ms
    access-logging: start 219 elapsed 1 ms
    stop-transaction: start 220 elapsed 0 ms
    Total Policy evaluation time: 8 ms
  url_categorization complete time: 1
  server connection: start 8
    DNS Lookup: start 8 elapsed 0 ms
  server connection: connected 8 first-byte 219 last_byte 219
  client connection: first-response-byte 219 last-response-byte 219

Total time added: 7 ms
Total latency to first byte: 7 ms
   Request latency: 7 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626288 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.206 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:36 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{65b34054-ffff-ffff-284a-75262be495d7}/subscriptions/0/poll?ackId=1165
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.48.0.51 Chrome/66.0.3359.181 Electron/3.1.8 Safari/537.36
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 38456 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 2 elapsed 1 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 38455 elapsed 0 ms
    access-logging: start 38455 elapsed 1 ms
    stop-transaction: start 38456 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 1
  server connection: start 3
    DNS Lookup: start 3 elapsed 0 ms
  server connection: connected 3 first-byte 38455 last_byte 38455
  client connection: first-response-byte 38455 last-response-byte 38455

Total time added: 2 ms
Total latency to first byte: 2 ms
   Request latency: 2 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626392 type=ssl.tunnel
transaction handed off from: 1626391

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.3 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:15 UTC
unknown ssl://browser.pipe.aria.microsoft.com:443/
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626391 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.3 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:15 UTC
CONNECT tcp://browser.pipe.aria.microsoft.com:443/
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 747 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 7 ms
    client-out-terminated: start 8 elapsed 0 ms
    access-logging: start 13 elapsed 1 ms
    stop-transaction: start 747 elapsed 0 ms
    Total Policy evaluation time: 8 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 13
stop transaction --------------------
start transaction -------------------
transaction ID=1626353 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:02:54 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 25141 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 25140 elapsed 0 ms
    client-out: start 25140 elapsed 0 ms
    access-logging: start 25140 elapsed 1 ms
    stop-transaction: start 25141 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 25140 last_byte 25140
  client connection: first-response-byte 25140 last-response-byte 25140

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626399 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:19 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 58 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 58 elapsed 0 ms
    client-out: start 58 elapsed 0 ms
    access-logging: start 58 elapsed 0 ms
    stop-transaction: start 58 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 58 last_byte 58
  client connection: first-response-byte 58 last-response-byte 58

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626403 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:21 UTC
CONNECT tcp://66.110.49.32:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626414 type=ssl.tunnel
transaction handed off from: 1626413

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:33 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626416 type=https.forward-proxy
transaction handed off from: 1626415

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:33 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 81 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 80 elapsed 0 ms
    client-out-terminated: start 80 elapsed 0 ms
    access-logging: start 80 elapsed 1 ms
    stop-transaction: start 81 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 80
  client connection: first-response-byte 0 last-response-byte 80
stop transaction --------------------
start transaction -------------------
transaction ID=1626413 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:33 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 456 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 8 ms
    client-out-terminated: start 9 elapsed 0 ms
    access-logging: start 15 elapsed 0 ms
    stop-transaction: start 456 elapsed 0 ms
    Total Policy evaluation time: 8 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 15
stop transaction --------------------
start transaction -------------------
transaction ID=1626418 type=ssl.tunnel
transaction handed off from: 1626417

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:34 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626420 type=https.forward-proxy
transaction handed off from: 1626419

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:34 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 21 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 20 elapsed 0 ms
    client-out-terminated: start 20 elapsed 0 ms
    access-logging: start 21 elapsed 0 ms
    stop-transaction: start 21 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 20
  client connection: first-response-byte 0 last-response-byte 21
stop transaction --------------------
start transaction -------------------
transaction ID=1626417 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:34 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 385 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 385 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626423 type=ssl.tunnel
transaction handed off from: 1626422

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:35 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626425 type=https.forward-proxy
transaction handed off from: 1626424

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:35 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 21 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 19 elapsed 0 ms
    client-out-terminated: start 19 elapsed 0 ms
    access-logging: start 20 elapsed 0 ms
    stop-transaction: start 21 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 19
  client connection: first-response-byte 0 last-response-byte 20
stop transaction --------------------
start transaction -------------------
transaction ID=1626422 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:35 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 386 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    client-out-terminated: start 2 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 386 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626427 type=ssl.tunnel
transaction handed off from: 1626426

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:36 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626430 type=https.forward-proxy
transaction handed off from: 1626428

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:36 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 21 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 20 elapsed 0 ms
    client-out-terminated: start 20 elapsed 0 ms
    access-logging: start 21 elapsed 0 ms
    stop-transaction: start 21 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 20
  client connection: first-response-byte 0 last-response-byte 21
stop transaction --------------------
start transaction -------------------
transaction ID=1626429 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.206 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:36 UTC
GET https://static.asm.skype.com/pes/v1/petoken
origin server next-hop IP address=13.76.170.95
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.48.0.51 Chrome/66.0.3359.181 Electron/3.1.8 Safari/537.36
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Internet Telephony@Blue Coat;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Internet Telephony@Blue Coat;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: Office 365 Skype for Business
application.operation: none
application.group: Instant Messaging;Online Meetings;VoIP
DSCP client outbound: 65
DSCP server outbound: 65
set response header 'Cache-Control'
  value='proxy-revalidate'

Transaction timing: total-transaction-time 291 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 9 ms
    server-out: start 10 elapsed 0 ms
    server-in: start 224 elapsed 0 ms
    cache-hit: start 10 elapsed 0 ms
    client-out: start 290 elapsed 0 ms
    access-logging: start 290 elapsed 1 ms
    stop-transaction: start 291 elapsed 0 ms
    Total Policy evaluation time: 10 ms
  url_categorization complete time: 1
  server connection: start 10
    DNS Lookup: start 10 elapsed 1 ms
  server connection: connected 224 first-byte 290 last_byte 290
  client connection: first-response-byte 290 last-response-byte 290

Total time added: 9 ms
Total latency to first byte: 223 ms
   Request latency: 9 ms
  OCS connect time: 214 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626426 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:36 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 385 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 385 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626431 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.206 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:36 UTC
GET https://static-asm.secure.skypeassets.com/token/token_to_cookies?vdms_skype_token=ME61fb25p25HN5xv8_ezWxztc7MJV6mdv44pfegPw9n0MAr4-gKkTpqk7WaHQnre
origin server next-hop IP address=192.229.232.200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.48.0.51 Chrome/66.0.3359.181 Electron/3.1.8 Safari/537.36
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Content Servers@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: Office 365 Skype for Business
application.operation: none
application.group: Instant Messaging;Online Meetings;VoIP
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 112 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 111 elapsed 0 ms
    access-logging: start 112 elapsed 0 ms
    stop-transaction: start 112 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 3 elapsed 0 ms
  server connection: connected 85 first-byte 111 last_byte 111
  client connection: first-response-byte 112 last-response-byte 112

Total time added: 1 ms
Total latency to first byte: 85 ms
   Request latency: 0 ms
  OCS connect time: 84 ms
  Response latency (first byte): 1 ms
   Response latency (last byte): 1 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626433 type=ssl.tunnel
transaction handed off from: 1626432

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:36 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626437 type=https.forward-proxy
transaction handed off from: 1626434

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:37 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 21 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 20 elapsed 0 ms
    client-out-terminated: start 20 elapsed 0 ms
    access-logging: start 21 elapsed 0 ms
    stop-transaction: start 21 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 20
  client connection: first-response-byte 0 last-response-byte 21
stop transaction --------------------
start transaction -------------------
transaction ID=1626432 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:36 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 402 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    client-out-terminated: start 2 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 402 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626389 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.206 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:14 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{65b34054-ffff-ffff-284a-75262be495d7}/subscriptions/0/poll?ackId=1165
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.48.0.51 Chrome/66.0.3359.181 Electron/3.1.8 Safari/537.36
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 23105 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 1 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 23104 elapsed 0 ms
    access-logging: start 23104 elapsed 1 ms
    stop-transaction: start 23105 elapsed 0 ms
    Total Policy evaluation time: 2 ms
  url_categorization complete time: 1
  server connection: start 2
    DNS Lookup: start 2 elapsed 1 ms
  server connection: connected 3 first-byte 23104 last_byte 23104
  client connection: first-response-byte 23104 last-response-byte 23104

Total time added: 1 ms
Total latency to first byte: 2 ms
   Request latency: 1 ms
  OCS connect time: 1 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626440 type=ssl.tunnel
transaction handed off from: 1626439

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:37 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626442 type=https.forward-proxy
transaction handed off from: 1626441

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:38 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 21 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 20 elapsed 0 ms
    client-out-terminated: start 20 elapsed 0 ms
    access-logging: start 21 elapsed 0 ms
    stop-transaction: start 21 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 20
  client connection: first-response-byte 0 last-response-byte 21
stop transaction --------------------
start transaction -------------------
transaction ID=1626439 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:37 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 394 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 394 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626444 type=ssl.tunnel
transaction handed off from: 1626443

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:38 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626446 type=https.forward-proxy
transaction handed off from: 1626445

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:39 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 22 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 20 elapsed 1 ms
    client-out-terminated: start 20 elapsed 1 ms
    access-logging: start 21 elapsed 1 ms
    stop-transaction: start 22 elapsed 0 ms
    Total Policy evaluation time: 3 ms
  url_categorization complete time: 20
  client connection: first-response-byte 0 last-response-byte 21
stop transaction --------------------
start transaction -------------------
transaction ID=1626443 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:38 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 404 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    client-out-terminated: start 2 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 404 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626448 type=ssl.tunnel
transaction handed off from: 1626447

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:39 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626450 type=https.forward-proxy
transaction handed off from: 1626449

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:39 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 23 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 22 elapsed 0 ms
    client-out-terminated: start 22 elapsed 0 ms
    access-logging: start 22 elapsed 1 ms
    stop-transaction: start 23 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 22
  client connection: first-response-byte 0 last-response-byte 22
stop transaction --------------------
start transaction -------------------
transaction ID=1626447 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:39 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 388 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 388 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626452 type=ssl.tunnel
transaction handed off from: 1626451

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:40 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626455 type=https.forward-proxy
transaction handed off from: 1626453

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:40 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 22 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 21 elapsed 0 ms
    client-out-terminated: start 21 elapsed 0 ms
    access-logging: start 21 elapsed 1 ms
    stop-transaction: start 22 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 21
  client connection: first-response-byte 0 last-response-byte 21
stop transaction --------------------
start transaction -------------------
transaction ID=1626451 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:40 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 387 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    access-logging: start 5 elapsed 1 ms
    stop-transaction: start 387 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626458 type=ssl.tunnel
transaction handed off from: 1626457

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:41 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626460 type=https.forward-proxy
transaction handed off from: 1626459

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:41 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 21 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 19 elapsed 1 ms
    client-out-terminated: start 19 elapsed 1 ms
    access-logging: start 20 elapsed 1 ms
    stop-transaction: start 21 elapsed 0 ms
    Total Policy evaluation time: 3 ms
  url_categorization complete time: 19
  client connection: first-response-byte 0 last-response-byte 20
stop transaction --------------------
start transaction -------------------
transaction ID=1626457 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:41 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 389 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 1 ms
    client-out-terminated: start 2 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 389 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626463 type=ssl.tunnel
transaction handed off from: 1626462

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:42 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626466 type=https.forward-proxy
transaction handed off from: 1626464

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:42 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 23 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 22 elapsed 0 ms
    client-out-terminated: start 22 elapsed 0 ms
    access-logging: start 23 elapsed 0 ms
    stop-transaction: start 23 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 22
  client connection: first-response-byte 0 last-response-byte 23
stop transaction --------------------
start transaction -------------------
transaction ID=1626462 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:42 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 400 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 400 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626468 type=ssl.tunnel
transaction handed off from: 1626467

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:43 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626470 type=https.forward-proxy
transaction handed off from: 1626469

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:43 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 21 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 20 elapsed 0 ms
    client-out-terminated: start 20 elapsed 0 ms
    access-logging: start 21 elapsed 0 ms
    stop-transaction: start 21 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 20
  client connection: first-response-byte 0 last-response-byte 21
stop transaction --------------------
start transaction -------------------
transaction ID=1626467 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:43 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 427 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    client-out-terminated: start 2 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 427 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626472 type=ssl.tunnel
transaction handed off from: 1626471

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:43 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626474 type=https.forward-proxy
transaction handed off from: 1626473

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:44 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 21 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 19 elapsed 0 ms
    client-out-terminated: start 19 elapsed 0 ms
    access-logging: start 20 elapsed 0 ms
    stop-transaction: start 21 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 19
  client connection: first-response-byte 0 last-response-byte 20
stop transaction --------------------
start transaction -------------------
transaction ID=1626471 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:43 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 404 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 404 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626400 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:19 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 25146 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 25145 elapsed 0 ms
    client-out: start 25145 elapsed 0 ms
    access-logging: start 25146 elapsed 0 ms
    stop-transaction: start 25146 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 25145 last_byte 25145
  client connection: first-response-byte 25145 last-response-byte 25146

Total time added: 1 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 1 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626477 type=ssl.tunnel
transaction handed off from: 1626476

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:44 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
stop transaction --------------------
start transaction -------------------
transaction ID=1626480 type=https.forward-proxy
transaction handed off from: 1626478

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:45 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 23 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 22 elapsed 0 ms
    client-out-terminated: start 22 elapsed 0 ms
    access-logging: start 23 elapsed 0 ms
    stop-transaction: start 23 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 22
  client connection: first-response-byte 0 last-response-byte 23
stop transaction --------------------
start transaction -------------------
transaction ID=1626476 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:44 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 391 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    access-logging: start 6 elapsed 1 ms
    stop-transaction: start 391 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626482 type=ssl.tunnel
transaction handed off from: 1626481

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:45 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
stop transaction --------------------
start transaction -------------------
transaction ID=1626484 type=https.forward-proxy
transaction handed off from: 1626483

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:46 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 25 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 24 elapsed 0 ms
    client-out-terminated: start 24 elapsed 0 ms
    access-logging: start 25 elapsed 0 ms
    stop-transaction: start 25 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 24
  client connection: first-response-byte 0 last-response-byte 25
stop transaction --------------------
start transaction -------------------
transaction ID=1626481 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:45 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 392 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    access-logging: start 4 elapsed 1 ms
    stop-transaction: start 392 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626486 type=ssl.tunnel
transaction handed off from: 1626485

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:46 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626488 type=https.forward-proxy
transaction handed off from: 1626487

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:46 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 21 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 20 elapsed 0 ms
    client-out-terminated: start 20 elapsed 0 ms
    access-logging: start 21 elapsed 0 ms
    stop-transaction: start 21 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 20
  client connection: first-response-byte 0 last-response-byte 21
stop transaction --------------------
start transaction -------------------
transaction ID=1626485 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:46 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 400 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    access-logging: start 6 elapsed 0 ms
    stop-transaction: start 400 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 6
stop transaction --------------------
start transaction -------------------
transaction ID=1626494 type=ssl.tunnel
transaction handed off from: 1626493

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:47 UTC
unknown ssl://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626496 type=https.forward-proxy
transaction handed off from: 1626495

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:47 UTC
POST https://watson.telemetry.microsoft.com/Telemetry.Request
User-Agent: MSDW
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 0
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 20 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 19 elapsed 0 ms
    client-out-terminated: start 19 elapsed 0 ms
    access-logging: start 20 elapsed 0 ms
    stop-transaction: start 20 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 19
  client connection: first-response-byte 0 last-response-byte 20
stop transaction --------------------
start transaction -------------------
transaction ID=1626493 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:47 UTC
CONNECT tcp://watson.telemetry.microsoft.com:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat;Web Ads/Analytics@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: Office 365 General
application.operation: none
application.group: Online Productivity Suite
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 457 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 1 ms
    client-out-terminated: start 2 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 457 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626375 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:09 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{07be9275-9723-4ff6-886f-840979528369}/subscriptions/0/poll?ackId=1118
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.34.0.78 Chrome/61.0.3163.100 Electron/2.0.11 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 38555 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 2 elapsed 1 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 38554 elapsed 0 ms
    access-logging: start 38554 elapsed 0 ms
    stop-transaction: start 38555 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  server connection: start 3
    DNS Lookup: start 3 elapsed 0 ms
  server connection: connected 3 first-byte 38553 last_byte 38553
  client connection: first-response-byte 38554 last-response-byte 38554

Total time added: 3 ms
Total latency to first byte: 3 ms
   Request latency: 2 ms
  OCS connect time: 0 ms
  Response latency (first byte): 1 ms
   Response latency (last byte): 1 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626502 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES trace.request(yes) 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:49 UTC
GET https://www.google.com/maps/preview/log204?authuser=0&hl=en&gl=kh&pb=!6m1!4e1!8m7!23m6!1i3!2i3!3f0.7625!4f0.000012!5i2!6i0!11m3!1s4IIVXZvVDJ2YvQTy0Yz4Cg!7e81!15i8899
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 204
client.response.code: 204
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 138 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 43 ms
    server-out: start 44 elapsed 0 ms
    server-in: start 45 elapsed 0 ms
    client-out: start 138 elapsed 0 ms
    access-logging: start 138 elapsed 0 ms
    stop-transaction: start 138 elapsed 0 ms
    Total Policy evaluation time: 43 ms
  url_categorization complete time: 0
  server connection: start 44
    DNS Lookup: start 45 elapsed 0 ms
  server connection: connected 45 first-byte 138 last_byte 138
  client connection: first-response-byte 138 last-response-byte 138

Total time added: 43 ms
Total latency to first byte: 44 ms
   Request latency: 43 ms
  OCS connect time: 1 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626503 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES trace.request(yes) 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:49 UTC
GET https://www.google.com/maps/preview/log204?authuser=0&hl=en&gl=kh&pb=!6m1!4e1!8m14!23m6!1i31!2i4!3f0.668889!4f0.209836!5i9!6i2!23m6!1i106!2i4!3f0.055!4f0!5i1!6i0!11m3!1s4IIVXZvVDJ2YvQTy0Yz4Cg!7e81!15i8899
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 1
    static categorization time: 1
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 204
client.response.code: 204
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 107 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 1 elapsed 0 ms
    client-out: start 106 elapsed 0 ms
    access-logging: start 107 elapsed 0 ms
    stop-transaction: start 107 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 106 last_byte 106
  client connection: first-response-byte 107 last-response-byte 107

Total time added: 1 ms
Total latency to first byte: 1 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 1 ms
   Response latency (last byte): 1 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626512 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:50 UTC
GET https://ads.viber.com/v2/ads/fetch?adloc=8&appId=902&appSecret=d8c7d85fb4430f497a844ac776b7db24&loc=en&count=1&ver=10.9.0&vboCredit=0&daysFromActivation=0&foreground=0&ua=Mozilla/4.0+(compatible;+MSIE+7.0;+Windows+NT+10.0;+WOW64;+Trident/7.0;+.NET4.0C;+.NET4.0E;+InfoPath.3)&aid=7f131ec8fd13a40c59dca83f827de294e24d45ab&video=1&banner=1&adapter=0
origin server next-hop IP address=52.206.72.255
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) QtWebEngine/5.12.3 Chrome/69.0.3497.128 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Internet Telephony@Blue Coat;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Internet Telephony@Blue Coat;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1029 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 8 ms
    server-out: start 9 elapsed 0 ms
    server-in: start 775 elapsed 0 ms
    client-out: start 1029 elapsed 0 ms
    access-logging: start 1029 elapsed 0 ms
    stop-transaction: start 1029 elapsed 0 ms
    Total Policy evaluation time: 8 ms
  url_categorization complete time: 0
  server connection: start 9
    DNS Lookup: start 9 elapsed 2 ms
  server connection: connected 775 first-byte 1029 last_byte 1029
  client connection: first-response-byte 1029 last-response-byte 1029

Total time added: 8 ms
Total latency to first byte: 774 ms
   Request latency: 8 ms
  OCS connect time: 766 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626523 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:51 UTC
CONNECT tcp://180.87.4.212:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    client-out-terminated: start 4 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626533 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:04 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 175 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 174 elapsed 0 ms
    client-out: start 174 elapsed 0 ms
    access-logging: start 175 elapsed 0 ms
    stop-transaction: start 175 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 174 last_byte 174
  client connection: first-response-byte 175 last-response-byte 175

Total time added: 1 ms
Total latency to first byte: 1 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 1 ms
   Response latency (last byte): 1 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626535 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:06 UTC
CONNECT tcp://play.google.com:443/
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Shopping@Blue Coat;Software Downloads@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626536 type=ssl.tunnel
transaction handed off from: 1626535

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:06 UTC
unknown ssl://play.google.com:443/
origin server next-hop IP address=216.58.196.46
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Shopping@Blue Coat;Software Downloads@Blue Coat
    total categorization time: 0
    static categorization time: 0
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 99 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    stop-transaction: start 99 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  ssl server hello complete: 98
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 4 ms
  server connection: connected 50

Total time added: 0 ms
Total latency to first byte: 49 ms
   Request latency: 0 ms
  OCS connect time: 49 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626538 type=https.forward-proxy
transaction handed off from: 1626537

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:06 UTC
OPTIONS https://play.google.com/log?format=json&hasfast=true&authuser=0
origin server next-hop IP address=216.58.196.46
Referer: https://translate.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Shopping@Blue Coat;Software Downloads@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Translation@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 62 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 1 ms
    server-out: start 3 elapsed 0 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 62 elapsed 0 ms
    access-logging: start 62 elapsed 0 ms
    stop-transaction: start 62 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 2
  server connection: start 3
    DNS Lookup: start 3 elapsed 0 ms
  server connection: connected 3 first-byte 62 last_byte 62
  client connection: first-response-byte 62 last-response-byte 62

Total time added: 1 ms
Total latency to first byte: 1 ms
   Request latency: 1 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626539 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:06 UTC
CONNECT tcp://play.google.com:443/
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Shopping@Blue Coat;Software Downloads@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 4 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    access-logging: start 4 elapsed 0 ms
    stop-transaction: start 4 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  client connection: first-response-byte 0 last-response-byte 4
stop transaction --------------------
start transaction -------------------
transaction ID=1626540 type=ssl.tunnel
transaction handed off from: 1626539

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:06 UTC
unknown ssl://play.google.com:443/
origin server next-hop IP address=216.58.196.46
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Shopping@Blue Coat;Software Downloads@Blue Coat
    total categorization time: 0
    static categorization time: 0
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 96 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    stop-transaction: start 96 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  ssl server hello complete: 95
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 50

Total time added: 0 ms
Total latency to first byte: 49 ms
   Request latency: 0 ms
  OCS connect time: 49 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626542 type=https.forward-proxy
transaction handed off from: 1626541

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:06 UTC
POST https://play.google.com/log?format=json&hasfast=true&authuser=0
origin server next-hop IP address=216.58.196.46
Referer: https://translate.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Shopping@Blue Coat;Software Downloads@Blue Coat
    total categorization time: 1
    static categorization time: 1
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Translation@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65
set response header 'Cache-Control'
  value='private, proxy-revalidate'

Transaction timing: total-transaction-time 66 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 4 elapsed 0 ms
    server-out: start 4 elapsed 0 ms
    server-in: start 4 elapsed 0 ms
    client-out: start 64 elapsed 0 ms
    access-logging: start 65 elapsed 1 ms
    stop-transaction: start 66 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 4
  server connection: start 4
    DNS Lookup: start 4 elapsed 0 ms
  server connection: connected 4 first-byte 64 last_byte 65
  client connection: first-response-byte 64 last-response-byte 65

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626479 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:44 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 25166 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 10 ms
    server-out: start 11 elapsed 0 ms
    server-in: start 25166 elapsed 0 ms
    client-out: start 25166 elapsed 0 ms
    access-logging: start 25166 elapsed 0 ms
    stop-transaction: start 25166 elapsed 0 ms
    Total Policy evaluation time: 10 ms
  url_categorization complete time: 1
  server connection: start 11
    DNS Lookup: start 11 elapsed 0 ms
  server connection: connected 11 first-byte 25166 last_byte 25166
  client connection: first-response-byte 25166 last-response-byte 25166

Total time added: 10 ms
Total latency to first byte: 10 ms
   Request latency: 10 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626549 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:12 UTC
GET https://static.asm.skype.com/pes/v1/petoken
origin server next-hop IP address=13.76.170.95
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.34.0.78 Chrome/61.0.3163.100 Electron/2.0.11 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Internet Telephony@Blue Coat;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Internet Telephony@Blue Coat;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: Office 365 Skype for Business
application.operation: none
application.group: Instant Messaging;Online Meetings;VoIP
DSCP client outbound: 65
DSCP server outbound: 65
set response header 'Cache-Control'
  value='proxy-revalidate'

Transaction timing: total-transaction-time 299 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 2 elapsed 0 ms
    server-in: start 217 elapsed 0 ms
    cache-hit: start 2 elapsed 0 ms
    client-out: start 299 elapsed 0 ms
    access-logging: start 299 elapsed 0 ms
    stop-transaction: start 299 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  server connection: start 2
    DNS Lookup: start 2 elapsed 4 ms
  server connection: connected 217 first-byte 299 last_byte 299
  client connection: first-response-byte 299 last-response-byte 299

Total time added: 1 ms
Total latency to first byte: 216 ms
   Request latency: 1 ms
  OCS connect time: 215 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626551 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:12 UTC
GET https://static-asm.secure.skypeassets.com/token/token_to_cookies?vdms_skype_token=g3RSb3zoTGeiMV5xmyirhuYKpuPVYJ4feaOuhRGlUsPZ3Lwokp_gT6jXJN2OLRFC
origin server next-hop IP address=192.229.232.200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.34.0.78 Chrome/61.0.3163.100 Electron/2.0.11 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Content Servers@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: Office 365 Skype for Business
application.operation: none
application.group: Instant Messaging;Online Meetings;VoIP
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 100 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 77 elapsed 0 ms
    client-out: start 99 elapsed 0 ms
    access-logging: start 100 elapsed 0 ms
    stop-transaction: start 100 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 77 first-byte 99 last_byte 99
  client connection: first-response-byte 100 last-response-byte 100

Total time added: 1 ms
Total latency to first byte: 77 ms
   Request latency: 0 ms
  OCS connect time: 76 ms
  Response latency (first byte): 1 ms
   Response latency (last byte): 1 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626438 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.206 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:37 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{65b34054-ffff-ffff-284a-75262be495d7}/subscriptions/0/poll?ackId=1169
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.48.0.51 Chrome/66.0.3359.181 Electron/3.1.8 Safari/537.36
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 38774 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 2 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 38773 elapsed 0 ms
    access-logging: start 38773 elapsed 1 ms
    stop-transaction: start 38774 elapsed 0 ms
    Total Policy evaluation time: 3 ms
  url_categorization complete time: 1
  server connection: start 3
    DNS Lookup: start 3 elapsed 0 ms
  server connection: connected 3 first-byte 38773 last_byte 38773
  client connection: first-response-byte 38773 last-response-byte 38773

Total time added: 2 ms
Total latency to first byte: 2 ms
   Request latency: 2 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626556 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:20 UTC
CONNECT tcp://180.87.4.210:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;none@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 6 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 1 ms
    stop-transaction: start 6 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626497 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:03:48 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{07be9275-9723-4ff6-886f-840979528369}/subscriptions/0/poll?ackId=1118
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.34.0.78 Chrome/61.0.3163.100 Electron/2.0.11 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 38540 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 7 ms
    server-out: start 8 elapsed 1 ms
    server-in: start 10 elapsed 0 ms
    client-out: start 38538 elapsed 0 ms
    access-logging: start 38539 elapsed 1 ms
    stop-transaction: start 38540 elapsed 0 ms
    Total Policy evaluation time: 9 ms
  url_categorization complete time: 1
  server connection: start 9
    DNS Lookup: start 9 elapsed 0 ms
  server connection: connected 10 first-byte 38538 last_byte 38538
  client connection: first-response-byte 38539 last-response-byte 38539

Total time added: 9 ms
Total latency to first byte: 10 ms
   Request latency: 8 ms
  OCS connect time: 1 ms
  Response latency (first byte): 1 ms
   Response latency (last byte): 1 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626569 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:33 UTC
GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?49a11cd6f7932e59
User-Agent: Microsoft-CryptoAPI/10.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Non-Viewable/Infrastructure@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 403
application.name: Microsoft Update
application.operation: Update Software
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 9 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 8 ms
    client-out-terminated: start 9 elapsed 0 ms
    access-logging: start 9 elapsed 0 ms
    stop-transaction: start 9 elapsed 0 ms
    Total Policy evaluation time: 8 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 9
stop transaction --------------------
start transaction -------------------
transaction ID=1626570 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:33 UTC
GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab?eee7980b31933540
User-Agent: Microsoft-CryptoAPI/10.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Non-Viewable/Infrastructure@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 403
application.name: Microsoft Update
application.operation: Update Software
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 2 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    access-logging: start 1 elapsed 1 ms
    stop-transaction: start 2 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626571 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:34 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{07be9275-9723-4ff6-886f-840979528369}/active
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.34.0.78 Chrome/61.0.3163.100 Electron/2.0.11 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 201
client.response.code: 201
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 223 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 8 ms
    server-out: start 9 elapsed 1 ms
    server-in: start 10 elapsed 0 ms
    client-out: start 222 elapsed 0 ms
    access-logging: start 222 elapsed 1 ms
    stop-transaction: start 223 elapsed 0 ms
    Total Policy evaluation time: 10 ms
  url_categorization complete time: 1
  server connection: start 10
    DNS Lookup: start 10 elapsed 0 ms
  server connection: connected 10 first-byte 222 last_byte 222
  client connection: first-response-byte 222 last-response-byte 222

Total time added: 9 ms
Total latency to first byte: 9 ms
   Request latency: 9 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626545 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:10 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 25153 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 25153 elapsed 0 ms
    client-out: start 25153 elapsed 0 ms
    access-logging: start 25153 elapsed 0 ms
    stop-transaction: start 25153 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 25153 last_byte 25153
  client connection: first-response-byte 25153 last-response-byte 25153

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626573 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:35 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 76 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 76 elapsed 0 ms
    client-out: start 76 elapsed 0 ms
    access-logging: start 76 elapsed 0 ms
    stop-transaction: start 76 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 76 last_byte 76
  client connection: first-response-byte 76 last-response-byte 76

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626595 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES trace.request(yes) 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:49 UTC
GET https://www.google.com/maps/preview/log204?authuser=0&hl=en&gl=kh&pb=!6m1!4e1!8m14!23m6!1i31!2i4!3f0.831667!4f0.421563!5i9!6i3!23m6!1i106!2i4!3f0.065!4f0!5i1!6i0!11m3!1s4IIVXZvVDJ2YvQTy0Yz4Cg!7e81!15i8899
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 204
client.response.code: 204
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 104 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 17 ms
    server-out: start 18 elapsed 0 ms
    server-in: start 18 elapsed 0 ms
    client-out: start 103 elapsed 0 ms
    access-logging: start 103 elapsed 1 ms
    stop-transaction: start 104 elapsed 0 ms
    Total Policy evaluation time: 18 ms
  url_categorization complete time: 0
  server connection: start 18
    DNS Lookup: start 18 elapsed 0 ms
  server connection: connected 18 first-byte 103 last_byte 103
  client connection: first-response-byte 103 last-response-byte 103

Total time added: 17 ms
Total latency to first byte: 17 ms
   Request latency: 17 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626594 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
 MATCH:         request.header.Referer.url.threat_risk.level=0..10 variable.request.header.Referer.url.threat_risk.effective_level("$(request.header.Referer.url.threat_risk.level)") 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
 MATCH:         ALLOW client.address=Src_branches condition=__CondList1URL_FOR_BRANCHES trace.request(yes) 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=1
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.207.4 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:49 UTC
GET https://www.google.com/maps/preview/log204?authuser=0&hl=en&gl=kh&pb=!6m1!4e1!8m7!23m6!1i3!2i3!3f0.78!4f0.0018!5i2!6i0!11m3!1s4IIVXZvVDJ2YvQTy0Yz4Cg!7e81!15i8899
origin server next-hop IP address=172.217.27.228
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Reference@Blue Coat
    total categorization time: 0
    static categorization time: 0
  request.header.Referer.url.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 0
    static categorization time: 0
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Search Engines/Portals@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 204
client.response.code: 204
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 107 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 8 ms
    server-out: start 9 elapsed 0 ms
    server-in: start 9 elapsed 0 ms
    client-out: start 106 elapsed 0 ms
    access-logging: start 106 elapsed 1 ms
    stop-transaction: start 107 elapsed 0 ms
    Total Policy evaluation time: 9 ms
  url_categorization complete time: 0
  server connection: start 9
    DNS Lookup: start 9 elapsed 0 ms
  server connection: connected 9 first-byte 106 last_byte 106
  client connection: first-response-byte 106 last-response-byte 106

Total time added: 8 ms
Total latency to first byte: 8 ms
   Request latency: 8 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626599 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     category="Chat (IM)/SMS"
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=5
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=5
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:51 UTC
CONNECT tcp://38.113.165.80:443/
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
EXCEPTION(connect_method_denied): CONNECT with a protocol other than SSL is not permitted
  url.category: none@Policy;none@YouTube;none@IWF;Technology/Internet@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 5 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 1 ms
    server-out: start 5 elapsed 0 ms
    client-out-terminated: start 5 elapsed 0 ms
    access-logging: start 5 elapsed 0 ms
    stop-transaction: start 5 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 2
  client connection: first-response-byte 0 last-response-byte 5
stop transaction --------------------
start transaction -------------------
transaction ID=1626597 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=2
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=2
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:51 UTC
GET https://ads.viber.com/v2/ads/fetch?adloc=8&appId=902&appSecret=d8c7d85fb4430f497a844ac776b7db24&loc=en&count=1&ver=10.9.0&vboCredit=0&daysFromActivation=0&foreground=0&ua=Mozilla/4.0+(compatible;+MSIE+7.0;+Windows+NT+10.0;+WOW64;+Trident/7.0;+.NET4.0C;+.NET4.0E;+InfoPath.3)&aid=7f131ec8fd13a40c59dca83f827de294e24d45ab&video=1&banner=1&adapter=0
origin server next-hop IP address=52.206.72.255
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) QtWebEngine/5.12.3 Chrome/69.0.3497.128 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Internet Telephony@Blue Coat;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Internet Telephony@Blue Coat;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1015 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 10 ms
    server-out: start 11 elapsed 1 ms
    server-in: start 759 elapsed 0 ms
    client-out: start 1015 elapsed 0 ms
    access-logging: start 1015 elapsed 0 ms
    stop-transaction: start 1015 elapsed 0 ms
    Total Policy evaluation time: 11 ms
  url_categorization complete time: 1
  server connection: start 12
    DNS Lookup: start 12 elapsed 2 ms
  server connection: connected 759 first-byte 1015 last_byte 1015
  client connection: first-response-byte 1015 last-response-byte 1015

Total time added: 11 ms
Total latency to first byte: 758 ms
   Request latency: 11 ms
  OCS connect time: 747 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626602 type=ssl.tunnel
transaction handed off from: 1626601

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

  late: <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]

  late: <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  late:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)

        <Proxy>
  late:     condition=__GROUP6

        <Proxy>
  late:     condition=__CondList1URL_FOR_BRANCHES

        <Proxy>
  late:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=(value undetermined)
        request.header.Referer.url.threat_risk.effective_level=(value undetermined)
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.3 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:51 UTC
unknown ssl://sn2-client-s.gateway.messenger.live.com:443/
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 1 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    client-out-terminated: start 1 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 1
stop transaction --------------------
start transaction -------------------
transaction ID=1626601 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

  late: <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]

        <Exception@term> [builtin-prolog:246]
 MATCH:         t_procedure.dashboard_blocked_stats_infinity 

        <Exception@req-all> [builtin-prolog:237]
 MATCH:         t_procedure.dashboard_record_hourly 

        <Exception@req-all> [builtin-prolog:240]
 MATCH:         t_procedure.dashboard_record_daily 

        <Exception@req-all> [builtin-prolog:243]
 MATCH:         t_procedure.dashboard_record_monthly 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     condition=__CondList1URL_FOR_BRANCHES
 MATCH:         DENY client.address=Src_branches 

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=(value undetermined)
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2
Called transaction procedure: dashboard_record_hourly
        <layer>
Called transaction procedure: dashboard_record_daily
        <layer>
Called transaction procedure: dashboard_blocked_stats_infinity
        <layer>
Called transaction procedure: dashboard_record_monthly
        <layer>

connection: service.name=Explicit HTTP client.address=192.168.207.3 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:51 UTC
CONNECT tcp://sn2-client-s.gateway.messenger.live.com:443/
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
DENIED: Either 'deny' or 'exception' was matched in policy
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 0
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 676 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 10 ms
    client-out-terminated: start 11 elapsed 0 ms
    access-logging: start 14 elapsed 1 ms
    stop-transaction: start 676 elapsed 0 ms
    Total Policy evaluation time: 11 ms
  url_categorization complete time: 1
  client connection: first-response-byte 0 last-response-byte 14
stop transaction --------------------
start transaction -------------------
transaction ID=1626607 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
 MATCH:         user.login.count=2 user.login.log_out_other(true) 

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.206 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:54 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{65b34054-ffff-ffff-284a-75262be495d7}/active
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.48.0.51 Chrome/66.0.3359.181 Electron/3.1.8 Safari/537.36
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
server.response.code: 201
client.response.code: 201
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 231 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 10 ms
    server-out: start 11 elapsed 1 ms
    server-in: start 13 elapsed 0 ms
    client-out: start 230 elapsed 0 ms
    access-logging: start 230 elapsed 1 ms
    stop-transaction: start 231 elapsed 0 ms
    Total Policy evaluation time: 12 ms
  url_categorization complete time: 1
  server connection: start 12
    DNS Lookup: start 12 elapsed 1 ms
  server connection: connected 13 first-byte 230 last_byte 230
  client connection: first-response-byte 230 last-response-byte 230

Total time added: 11 ms
Total latency to first byte: 12 ms
   Request latency: 11 ms
  OCS connect time: 1 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626553 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
 MATCH:         condition=__GROUP6 limit_bandwidth.client.inbound(class5) limit_bandwidth.client.outbound(class5) 

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.206 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:16 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{65b34054-ffff-ffff-284a-75262be495d7}/subscriptions/0/poll?ackId=1172
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.48.0.51 Chrome/66.0.3359.181 Electron/3.1.8 Safari/537.36
user: name="PRASAC\ty.oeng" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 1
    static categorization time: 1
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 38651 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 2 elapsed 1 ms
    server-in: start 3 elapsed 0 ms
    client-out: start 38651 elapsed 0 ms
    access-logging: start 38651 elapsed 0 ms
    stop-transaction: start 38651 elapsed 0 ms
    Total Policy evaluation time: 1 ms
  url_categorization complete time: 1
  server connection: start 3
    DNS Lookup: start 3 elapsed 0 ms
  server connection: connected 3 first-byte 38650 last_byte 38651
  client connection: first-response-byte 38651 last-response-byte 38651

Total time added: 1 ms
Total latency to first byte: 2 ms
   Request latency: 1 ms
  OCS connect time: 0 ms
  Response latency (first byte): 1 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626574 type=http.proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=3
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=3
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:35 UTC
POST http://91.108.56.167/api
origin server next-hop IP address=91.108.56.167
User-Agent: Mozilla/5.0
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 25030 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 1 elapsed 0 ms
    server-out: start 1 elapsed 0 ms
    server-in: start 25029 elapsed 0 ms
    client-out: start 25029 elapsed 0 ms
    access-logging: start 25029 elapsed 0 ms
    stop-transaction: start 25030 elapsed 0 ms
    Total Policy evaluation time: 0 ms
  url_categorization complete time: 0
  server connection: start 1
    DNS Lookup: start 1 elapsed 0 ms
  server connection: connected 1 first-byte 25029 last_byte 25029
  client connection: first-response-byte 25029 last-response-byte 25029

Total time added: 0 ms
Total latency to first byte: 0 ms
   Request latency: 0 ms
  OCS connect time: 0 ms
  Response latency (first byte): 0 ms
   Response latency (last byte): 0 ms
stop transaction --------------------
start transaction -------------------
transaction ID=1626562 type=https.forward-proxy

        <Proxy@always> [builtin-prolog:372]
 MATCH:         variable.bc_notify1(empty1) variable.bc_notify2(empty2) 

        <Proxy@req-url2 TRL_default_setting> [builtin-prolog:323]
 MATCH:         url.threat_risk.level=0..10 variable.url.threat_risk.effective_level("$(url.threat_risk.level)") 

        <Proxy@req-hdrs TRL_default_setting> [builtin-prolog:329]
   n/a:     request.header.Referer.url.threat_risk.level=0..10
 MATCH:         variable.request.header.Referer.url.threat_risk.effective_level(5) 

        <Forward@serv-conn TRL_default_setting> [builtin-prolog:335]
 MATCH:         server_url.threat_risk.level=0..10 variable.server_url.threat_risk.effective_level("$(server_url.threat_risk.level)") 

        <Proxy>
 MATCH:         authenticate(prasac) authenticate.force(yes) authenticate.mode(proxy-ip) trace.request(yes) 

        <Proxy>
  miss:     category=(Comedy, Entertainment, Film, Games, Movies_action_adventure, Movies_anime_animation, Movies_classics, Movies_comedy, Movies_drama, Movies_family, Movies_foreign, Movies_horror, Movies_sci_fi_fantasy, Movies_shorts, Movies_thriller, Music, Sports, Videoblog)
  miss:     condition=__USER12
  miss:     category=(Games, "Adult/Mature Content", "Child Pornography", "File Storage/Sharing", Gambling, Hacking, "Malicious Outbound Data/Botnets", "Malicious Sources/Malnets", "Media Sharing", Nudity, "Peer-to-Peer (P2P)", Phishing, Pornography, "Proxy Avoidance", "Sex Education", "Sexual Expression", "Social Networking", Spam)
  miss:     url.threat_risk.level=8..10
 MATCH:         reflect_ip(vip) 

        <Proxy>
  miss:     condition=__GROUP6
  miss:     condition=__GROUP1
  miss:     condition=__GROUP3

        <Proxy>
  miss:     client.address=Src_branches
  miss:     client.address=Src_branches

        <Proxy>
  miss:     user.login.count=2

Assigned values of transaction variables:
        dns.request.threat_risk.effective_level=(value undetermined)
        url.threat_risk.effective_level=1
        request.header.Referer.url.threat_risk.effective_level=5
        server_url.threat_risk.effective_level=1
        server.certificate.hostname.threat_risk.effective_level=(value undetermined)
        bc_notify1=empty1
        bc_notify2=empty2

connection: service.name=Explicit HTTP client.address=192.168.118.194 proxy.port=8080 client.interface=16:0.1 routing-domain=default
  location-id=0 access_type=unknown
time: 2019-06-28 03:04:26 UTC
POST https://sn2-client-s.gateway.messenger.live.com/v1/users/ME/endpoints/{07be9275-9723-4ff6-886f-840979528369}/subscriptions/0/poll?ackId=1118
origin server next-hop IP address=52.171.217.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Skype/8.34.0.78 Chrome/61.0.3163.100 Electron/2.0.11 Safari/537.36
user: name="PRASAC\phalla.thou" realm=prasac
authentication status='none' authorization status='none'
  url.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 2
    static categorization time: 2
  server.certficate.hostname.category: none@Policy;none@YouTube;none@IWF;Chat (IM)/SMS@Blue Coat
    total categorization time: 0
    static categorization time: 0
server.response.code: 200
client.response.code: 200
application.name: none
application.operation: none
application.group: none
DSCP client outbound: 65
DSCP server outbound: 65

Transaction timing: total-transaction-time 38804 ms
  Checkpoint timings:
    new-connection: start 1 elapsed 0 ms
    client-in: start 2 elapsed 0 ms
    server-out: start 2 elapsed 2 ms
    server-in: start 8 elapsed 0 ms
    client-out: start 38802 elapsed 0 ms
    access-logging: start 38803 elapsed 1 ms
    stop-transaction: start 38804 elapsed 0 ms
    Total Policy evaluation time: 3 ms
  url_categorization complete time: 2
  server connection: start 4
    DNS Lookup: start 4 elapsed 4 ms
  server connection: connected 8 first-byte 38802 last_byte 38802
  client connection: first-response-byte 38803 last-response-byte 38803

Total time added: 3 ms
Total latency to first byte: 7 ms
   Request latency: 2 ms
  OCS connect time: 4 ms
  Response latency (first byte): 1 ms
   Response latency (last byte): 1 ms
stop transaction --------------------