Cisco Cisco Web Security Appliance S360 Guía Para Resolver Problemas
wsa−hostname:80.
Same will happen when you use warning function on WSA.
•
As a result, WSA will refuse processing the request because the request was received on the incorrect port
(9001 instead of 80).
(9001 instead of 80).
If the received port is 9001 (or other port PAC file is hosted on), WSA will return "400 Bad Request".
•
If the received port is 8443 (or other port where Management HTTPS is listening on), WSA will drop
the connection without any error.
the connection without any error.
•
This behavior is incorrect, IE should not be sending requests directly to "wsa−hostname:9001" as the PAC file
does not state so.
does not state so.
Firefox does not observe this behavior.
•
Workaround:
Change either the "logo" link or the returning "PROXY" value in the PAC file so these two does not
match.
match.
1.
Change PAC file to use "PROXY <wsa−IP−address>:80" instead of hostname
2.
Creating another A record for logo link
3.
Note: It is recommended to use single word hostname when referencing proxies. Hence workarounds (1) and
(3) should be preferred over (2).
(3) should be preferred over (2).
Updated: Aug 05, 2014
Document ID: 118153