Passthrough Mode

In order to use HTTP Proxy effectively, Device and User Groups must be defined, and necessary policy definitions must be made. After these configurations, end users can only access the web page and sub URLs they are allowed to access. Undefined web pages will be inaccessible to end users.

Thanks to this feature, end users continue to access whatever the internal network rules allow before, without being subject to any policies and rules over HTTP Proxy. However, since all traffic will be made through HTTP Proxy, all traffic will be logged. In this way, end-user behavior analytics will be extracted, and the right policies will be analyzed and implemented.

To use this feature, the following steps must be followed:

sudo vi /u01/http-proxy/conf/http_proxy.properties http.proxy.passthrough=true (default value false). :wq! sudo systemctl restart pam-http

Since HTTP Proxy is in Passthrough mode, if there are predefined device definitions and policies, it will be bypassed and web traffic of all users who have permission to use HTTP Proxy on Single Connect will not be interfered with.

Mentioned logs can be viewed under Logging>HTTP Proxy Logs tab on Single Connect Web GUI.