ProxySG & Advanced Secure Gateway

Hi,

I'd like to know if anyone has implemented a user defined exception page where the user can bypass using a password.

Let me elaborate a little and give you some extra information for context...

(1) I have proxies integrated with CAS, and CAS configuration set to a maximum file size of 500 MB
(2) I have a VPM layer in which all I do is take care of ICAP response messages, for instance:
source = NetOps AD group, destination = some list of domains, service = ICAP RespMOD "maximum file size exceeded", action = allow
(3) Further on that layer, one of the last rules says:
source = any, destination = any, service = ICAP RespMOD "maximum file size exceeded", action = forced exception "user.defined.FileSizeExceeded"

But... I would like for the user to have a chance of inserting some sort of passcode and proceed with the download, with a warning that he should know what he's doing, the file was not scanned, yada, yada...

Is this possible? Thanks in advance!

/Mike/

MikeG,
I have some ideas on this, but reach out, likely will take some more thought logic on how to handle.  Definitely a Professional Services specialty, but I have some DLP ICAP folks who have had similar asks and we have found creative ways to accommodate.

------------------------------
Providing you Premier Partner support via Accredited Training, Professional Services, Consulting Services, Partner support for products with full staff of Broadcom Knights.
Looking for support and want the top versed individuals to assist you? Email sales@braxtongrant.com and let's start a conversation on how we can make you successful. Award Winning North America Symantec Knight Partner of the Year for 2021.
~~##Groundbreaking Expert Advantage Partner using CA Automic Automation for Automated Policy Rule Implementation with BSG Symantec Products! Reach out and ask me how to get your demo with us on this One Of A Kind Integration!##~~
------------------------------

Original Message:
Sent: Sep 09, 2022 12:33 PM
From: Miguel Goncalves
Subject: ProxySG custom exception

Hi,

I'd like to know if anyone has implemented a user defined exception page where the user can bypass using a password.

Let me elaborate a little and give you some extra information for context...

(1) I have proxies integrated with CAS, and CAS configuration set to a maximum file size of 500 MB
(2) I have a VPM layer in which all I do is take care of ICAP response messages, for instance:
source = NetOps AD group, destination = some list of domains, service = ICAP RespMOD "maximum file size exceeded", action = allow
(3) Further on that layer, one of the last rules says:
source = any, destination = any, service = ICAP RespMOD "maximum file size exceeded", action = forced exception "user.defined.FileSizeExceeded"

But... I would like for the user to have a chance of inserting some sort of passcode and proceed with the download, with a warning that he should know what he's doing, the file was not scanned, yada, yada...

Is this possible? Thanks in advance!

/Mike/

Hello AKH,

I'm not exactly interested in *paying* professional services ;)

Do you (or anyone reading this...) have any sample html code for this kind of operation? I'm no html guru, but I'm sure I could adapt it to my needs.

/Mike/
Original Message:
Sent: Sep 16, 2022 08:36 AM
From: aileen hudspeth
Subject: ProxySG custom exception

MikeG,
I have some ideas on this, but reach out, likely will take some more thought logic on how to handle.  Definitely a Professional Services specialty, but I have some DLP ICAP folks who have had similar asks and we have found creative ways to accommodate.

------------------------------
Providing you Premier Partner support via Accredited Training, Professional Services, Consulting Services, Partner support for products with full staff of Broadcom Knights.
Looking for support and want the top versed individuals to assist you? Email sales@braxtongrant.com and let's start a conversation on how we can make you successful. Award Winning North America Symantec Knight Partner of the Year for 2021.
~~##Groundbreaking Expert Advantage Partner using CA Automic Automation for Automated Policy Rule Implementation with BSG Symantec Products! Reach out and ask me how to get your demo with us on this One Of A Kind Integration!##~~

Original Message:
Sent: Sep 09, 2022 12:33 PM
From: Miguel Goncalves
Subject: ProxySG custom exception

Hi,

I'd like to know if anyone has implemented a user defined exception page where the user can bypass using a password.

Let me elaborate a little and give you some extra information for context...

(1) I have proxies integrated with CAS, and CAS configuration set to a maximum file size of 500 MB
(2) I have a VPM layer in which all I do is take care of ICAP response messages, for instance:
source = NetOps AD group, destination = some list of domains, service = ICAP RespMOD "maximum file size exceeded", action = allow
(3) Further on that layer, one of the last rules says:
source = any, destination = any, service = ICAP RespMOD "maximum file size exceeded", action = forced exception "user.defined.FileSizeExceeded"

But... I would like for the user to have a chance of inserting some sort of passcode and proceed with the download, with a warning that he should know what he's doing, the file was not scanned, yada, yada...

Is this possible? Thanks in advance!

/Mike/