URL Filtering in Vwire SSL Trust Question

Showing results for 
Show  only  | Search instead for 
Did you mean: 
Please sign in to see details of an important advisory in our Customer Advisories area.

URL Filtering in Vwire SSL Trust Question

Not applicable


I have a customer who is currently only running the PA in vwire. They need to have custom URL filtering continue and override pages.

My question is what needs to be done to have the end users browsers trust the certificate in vwire?

I know in layer 3 mode I can use a pushed out trusted root certificate going to a L3 interface. Based on my testing, in vwire mode I need to use transparent filtering but even if I do that and create a wildcard certificate it doesn't trust the certificate, I think because it is going directly to IP address not a dns address. Any insights or being pointed in the right direction would be appreciated.



Not applicable

The URL filtering override pages work like the Captive Portal pages. The answer to the orginal question was there needs to be a layer 3 interface of some type on the device for it to use for the certificates. This can be accomplished with a loop-back interface or a regular layer 3 interface. Otherwise in transparent mode you will receive certificate errors on the clients.


Maybe you can use the mangement interface for that.

Hope help


  • 2 replies
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!