WebSocket Control

You can improve communication between web browsers and remote hosts by enabling the WebSocket protocol globally or selectively.

The WebSocket protocol supports two-way communication channels over a single TCP connection, enabling real-time data transfer between a web browser and a web server or remote host.

1. On the user interface for Secure Web Gateway, select Policy > Web Policy > Policy.
2. From the policy tree, select Common Rules > WebSocket Control.
3. Optionally configure criteria to limit the scope of this rule set.
4. Select one of the following options:
   • Globally enable WebSocket traffic — Enables the WebSocket protocol between any web browser and remote host
   • Selectively enable WebSocket traffic — Select the WebSocket Control rules that you want enabled
     • Enable for Hosts in WebSocket Default Hosts list — Enables the WebSocket protocol between any web browser and a host named in the associated hosts list.
     • Enable for Groups in WebSocket Default User Groups list — Enables the WebSocket protocol when the web request includes the name of a user group in the associated user groups list
     • Enable for Users in WebSocket Default User Names list — Enables the WebSocket protocol when the web request includes the name of a user in the associated user names list

• Configure the lists associated with the rules as needed.

Changes to the policy tree, rule sets, or rules are automatically saved. You can publish them to the cloud now or keep working and publish later.