Guides
ProductDeveloperPartnerPersonal
Guides
ProductDeveloperPartnerPersonal

Customize Umbrella's PAC File

Suggest Edits

To bypass internal or external domains, you can add these domains in Umbrella. Umbrella copies the domains that you configured in Umbrella to the default PAC file. Web traffic on the domains is not sent to the Umbrella proxy. For information about internal domains, see Manage Domains.

After you download the default PAC file from Umbrella, you can edit the default PAC file and add more domains. Then, upload the customized PAC file to Umbrella or host this PAC file in your environment. Umbrella does not update the Internal Domains in a customized PAC file. Umbrella only modifies the default PAC file with the Internal Domains that you add in Umbrella.

Note: Umbrella supports IP-based domains. You must enter the IP in the browser’s address bar as the domain portion of the URL. For example, https://1.2.3.4/URLpath/. The PAC file does not resolve a domain to IP before matching an IP-based domain for bypass.

Prerequisites

  • Full admin access to the Umbrella dashboard. See Manage User Roles.
  • To download the Umbrella PAC file or custom PAC files on a user device in the organization, the device must either:
    • Connect to Umbrella on a Registered Network or Network Tunnel, or
    • Deploy the Cisco Secure Client with the Umbrella Roaming Security module on the user device.

Procedure

Copy the url for the Umbrella PAC file or a custom PAC file that you uploaded to Umbrella. Then paste the PAC file URL in a browser search bar and edit the file.

Copy the Umbrella PAC File

  1. Navigate to Policies > Management > Web Policy, and then click Global Settings.

  2. For Umbrella PAC File, click Copy to get the URL for the default PAC file.

Download the Umbrella PAC File

  1. Paste the PAC file URL into the browser's address bar, and then press Enter / Return.
    The browser downloads the PAC file.
706

Edit the PAC File

  1. Open the downloaded PAC file with a text editor, update it with domains to be bypassed, and then save the PAC file.
  2. Add the internal domains that the web proxy will bypass to the PAC file, and then save the file.
    Note: Provide a comma-delimited list of domain names and surround each domain name in the list with quotation marks. The wildcard character asterisk * is supported and treated as any value of any length. Use caution when using wildcards as well as periods. For example, *.example.com bypasses www.example.com, mail.example.com, and c.23.example.com. *example.com bypasses www.example.com as well as phishingexample.com.
  3. Save the PAC file.
//------------------------Customer Section------------------------
    //Add your internal domains within quotations marks like "wwwin.acme.com"
    //after the right parenthesis below. Please remove the two examples
    //below and add your own internal domains.

    var dont_proxy_customer_list = new Array(
        "wwwin.example.org",
        "*.example.org"
    );

    //Warning to Administrators: Touching any section after this point might
    //affect your users browsing experience and lead to considerable number
    //of issues and loading your customer support.
    //---------------------End Customer Section-----------------------

Deploy Umbrella's PAC File for Mac < Customize Umbrella's PAC File > Upload Custom PAC Files to Umbrella

Updated 2 months ago