Policy Test
You can check the configuration of explicit web proxy policies and transparent firewall policies to confirm that they are set up correctly.
The combination of policy type and source IP address forms the source traffic to test.
If a URI or HTTP header is specified as the destination, the policy test uses a DNS lookup to determine the actual IP address and port number of the destination traffic. If the clientʼs DNS lookup differs from the deviceʼs DNS lookup, the policy used for the test might be different that the policy used on the clientʼs traffic.
To test a policy:
-
Go to Policy & Objects > Policy Test.
-
Configure the following settings:
Policy Test
Select whether you want to test an Explicit or Transparent policy.
Source IP
Enter the source IP address.
Web Proxy
If you selected Explicit, select web-proxy or search for an explicit web proxy. To create an explicit web proxy, see Create or edit an explicit proxy.
Source Interface
If you selected Transparent, enter the source interface.
Destination
Select IP:Port, URI, or HTTP Header and enter the destination.
User & Group
If you want to test a specific user or user group, enable User & Group and then select one user or user group.
-
Click OK. The results show the policy configuration if a policy matches the parameters.