You are unable to add URLs to the list of tunnelled domains in the web console of IWSVA under HTTP > HTTPS Decryption > Tunneling | Domain Tunneling and also under HTTP > HTTPS Decryption > Tunneling | Failed HTTPS Accesses, clicking on Tunnel will have no effect.
The issue occurs when the file /var/iwss/HttpsTunnelDomains.ini is corrupted. To resolve the issue, replace the file with a properly structured copy that is available here.
- Log on to IWSVA directly or via SSH as "root".
Move the corrupted file to a different directory using the following command:
mv /var/iwss/HttpsTunnelDomains.ini /var/tmp/HttpsTunnelDomains.ini.bak
Extract the “HttpsTunnelDomains.ini” from the provided zip archive (no password required) and copy it to the /var/iwss/ directory on IWSVA.
For example, use WinSCP or FileZilla in SFTP mode (you will have to connect as root to be able to copy).
Change the owner and the permissions of the file using the following commands:
chown iscan:iscan /var/iwss/HttpsTunnelDomains.ini
chmod 664 /var/iwss/HttpsTunnelDomains.ini
Restart the web console using the following command: