Hi JS,
A Request URL Category object will provide a trigger based on the URL category of the Request URL. This could be custom categories you create, but it is more commonly used to pull the Blue Coat category (Gambling, Technology/Internet, etc).
A Combined Destination object allows you to combine multiple destination objects into a single destination trigger. For example, if I wanted to block File Sharing sites that are risky, I could use a Combined Destination object, and combine the Request URL Category (File Storage/Sharing) AND URL Threat Risk Level (5-10) objects.
I could also use the Combined Destination object to make OR logic between dissimilar destination objects. You may see this a lot when customers have a list of specific URLs they don't want a particular group to go to, (or only want a specific group allow to access). The key to remember when using OR logic with Combined objects is that proxy will check against each of the conditions every time it evaluates the rule. Depending on the situation and rule structure, this can affect performance vs creating separate rules. If you have separate rules, you can use the Policy ID feature and structure rules that are more likely to be hit earlier in the layer, and thus conserve resources.
You may also find the ProxySG Web Visual Policy Manager Reference Guide helpful.
Original Message:
Sent: Feb 27, 2024 09:39 AM
From: JS_2022
Subject: Request URL Category Object vs. Combined Destination Object - difference/uses?
Hi,
What is the difference between a Request URL Category Object and a Combined Destination Object? They both are just a list of URL's. When/why would you use one over the other?