Manage Internet Security Bypass
You can configure certain destinations in Cisco Secure Access to bypass internet security for end users. Add a destination—an IP address, CIDR block, or domain—and manage how Secure Access resolves DNS requests to the destination. Traffic on a destination can bypass the Secure Access DNS resolvers and Secure Web Gateway, or bypass the Secure Web Gateway only.
Table of Contents
About Internet Security Bypass
Internet security bypass is supported on user devices with the Cisco Secure Client (formerly known as AnyConnect) deployed or browsers in the environment with a configured Secure Access or custom PAC file. User devices must have the Cisco Secure Client deployed with the Umbrella Roaming Security module.
- If you bypass internet security in Secure Access, DNS requests for the destinations bypass the Secure Access DNS servers and Secure Web Gateway. The organization's local DNS servers resolve the DNS requests.
- If you bypass the Secure Web Gateway in Secure Access, Secure Access DNS servers resolve the DNS requests.
Set Up Internet Security Bypass
- Add a destination in Secure Access to bypass internet security. For more information, see Add Destinations for Internet Security Bypass.
- Edit a destination in Secure Access that is configured to bypass internet security. For more information, see Edit Destination for Internet Security Bypass.
- Delete a destination in Secure Access that is configured to bypass internet security. For more information, see Delete Destination for Internet Security Bypass.
Set Up Internet Security on User Devices < Manage Internet Security Bypass > Add Destinations for Internet Security Bypass
Updated 8 days ago