To bypass internal domains, you must customize Umbrella's PAC file by adding these domains to it. This can be achieved using the Umbrella dashboard rather than having to manually edit the PAC file.
Umbrella copies internal domains configured in the Umbrella dashboard (Deployments > Configuration > Domain Management) to the PAC file so that these internal domains are not sent to the proxy.
Note: PAC files are not supported for roaming computers or other connection mechanisms.
External domains which should be bypassed can also be added here.
IP-based domains are supported; however, the IP must be entered in the browser’s address bar as the domain portion of the URL. For example, https://184.108.40.206/URLpath/. The PAC file will not resolve a domain to IP before matching an IP-based domain for bypass.
If you require any manual editing of the PAC file, you must host the PAC file on a web server in your own environment. For more information about hosting a PAC file, see your web server’s documentation.
- Full admin access to the Umbrella dashboard. See Manage User Roles.
- Navigate to Policies > Management > Web Policy and click Add or expand an existing ruleset.
- Under Ruleset Settings, for PAC File, copy the PAC file URL.
- Download Umbrella PAC file by pasting the copied PAC URL into a browser's address bar and pressing Enter / Return.
Note: To download Umbrella's PAC file your egress IP must be added to Umbrella as a Network identity. Umbrella only allows the PAC file to download from a trusted network.
- Open the downloaded PAC file with a text editor, update it with domains to be bypassed, and then save the PAC file.
Note: Provide a comma-delimited list of domain name and surround each domain name in the list with quotation marks. The wildcard character asterisk * is supported and treated as any value of any length. Use extreme caution when using this wildcard as well as periods. For example, .example.com will bypass www.example.com, mail.example.com, c.23.example.com. example.com will bypass www.example.com as well as phishingexample.com.
//------------------------Customer Section------------------------ //Add your internal domains within quotations marks like "wwwin.acme.com" //after the right parenthesis below. Please remove the two examples //below and add your own internal domains. var dont_proxy_customer_list = new Array( "wwwin.example.org", "*.example.org" ); //Warning to Administrators: Touching any section after this point might //affect your users browsing experience and lead to considerable number //of issues and loading your customer support. //---------------------End Customer Section-----------------------
Updated 3 months ago