How to create a custom app signature to identify IE browsers when using http and https

dkillpack — Wed, 11 Sep 2013 00:19:26 GMT

I am looking for a way to create an custom application signature to identify IE browsers when accessing the internet and reliably identify it whether it is using http or https. Currently I have a custom app signature the works great when accessing http sites but fails when accessing https sites.

I have set the custom app signature up with pattern matching. Context of [http-req-headers] and the pattern of [compatible; MSIE 10.0;]. this was created based on the creating a custom app signature document.

When I use it in a policy that has only this app in it. I sees the the browser and throws up a response page. The other half of the policy should have the url category of social-networking. And when this is used by itself in a policy, it works great in both http and https. However put both together and access an https page and the browser app is ignored and typically shows ssl as the app. And the url category is not seen either.

The question then is can I create a custom app signature that can identify the browser when using an https page. Is there a different context that I should use for https rather than the http-reg-headers option?

Any thoughts and suggestions are welcomed.

Darrell

Re: How to create a custom app signature to identify IE browsers when using http and https

Gregoux — Thu, 23 Jan 2014 13:53:05 GMT

I think you have to decrypt the https connection

with the ssl outbound forward proxy

topic Re: How to create a custom app signature to identify IE browsers when using http and https in Automation/API Discussions

How to create a custom app signature to identify IE browsers when using http and https

Re: How to create a custom app signature to identify IE browsers when using http and https