Add an exception

  1. Go to Web > Exceptions and click Add an exception.
  2. Enter a name.
  3. Specify web traffic criteria.
    • Select the URL pattern matches check box, type a pattern in the Search/Add text box and click . Regular expressions are allowed. For example, ^([A-Za-z0-9.-]*\.)?example\.com/ matches all subdomains of example.com. Specify pattern matches using ASCII characters. For information about converting non-ASCII characters, refer to RFC 3490.
    • Select the Web site categories check box, click Add new item, and select categories.
    • Select the Source IP addresses check box, type an end-user address and click .
    • Select the Destination IP addresses check box, type a website address and click .
    Note The firewall evaluates all types of criteria using “AND”. For example, if you specify URL patterns and website categories, both types must match for the exception to apply. However, within each category, the firewall evaluates criteria using “OR”.
  4. Specify checks or actions to skip when the firewall encounters traffic that matches the criteria.
    OptionDescription
    HTTPS decryption Do not decrypt HTTPS for traffic that meets the specified criteria.
    Note If you disable HTTPS decryption, the firewall will not perform any other check that relies on decrypted traffic, such as malware scanning. However, the firewall will continue to scan HTTP traffic that matches the exception.
    Malware and content scanning Do not scan traffic that meets the specified criteria for malware or content as specified in a content filter.
    Sandstorm Do not send files that are downloaded using the specified criteria to Sandstorm.
    Policy checks Do not check policies for traffic that meets the specified criteria.
  5. Click Save.

Click the On/Off switch to turn the exception on.