Summary
In transparent bridge mode, you may want to bypass HTTPS traffic completely when the HTTPS decryption feature is not in use.
This means HTTPS traffic will be untouched, and InterScan Web Security Virtual Appliance (IWSVA) will simply act as a two-port switch for HTTPS traffic, thus saving IWSVA resources for other processes.
Note: This solution works for IWSVA in transparent bridge mode only.
Details
To bypass HTTPS traffic:
For IWSVA 5.6
- Log in to the IWSVA shell.
- Open /etc/iscan/IWSSPIProtocolHttpProxy.pni.
- Locate the interested_https_port parameter and remove its value.
For example, the parameter and value ‘interested_https_port=443’ should be ‘interested_https_port='.
- Restart all IWSVA services by running this command: /usr/iwss/rcIwss restart
For IWSVA 6.0
- Log in to the IWSVA shell.
- Open /etc/iscan/IWSSPIProtocolHttpProxy.pni.
- Locate the following parameters and remove their values:
interested_https_port
redirect_https_ports_before_bypass - The parameters should appear like this:
interested_https_port=
redirect_https_ports_before_bypass= - Restart all IWSVA services by running this command: /usr/iwss/rcIwss restart