This page describes how to diagnose and resolve common errors related to Secure Web Proxy policies and rules.
Secure Web Proxy gateway doesn't have an associated policy
If your Secure Web Proxy gateway isn't associated with a policy, then all
outbound HTTP and HTTPS traffic is blocked, leading to 403 Forbidden errors or
connection resets. This occurs because Secure Web Proxy
follows a deny-all posture by default and the gateway doesn't have any
associated rules to evaluate or authorize requests. As a result, all outbound
traffic is blocked until you create an explicit allow rule.
To resolve this issue, create a security policy with the appropriate rules and associate them with your Secure Web Proxy gateway.
Parallel rule creation failures
Creating Secure Web Proxy rules in parallel (adding multiple rules
simultaneously) isn't supported and can result in 409 Conflict or
Resource busy errors. To make sure that your Secure Web Proxy instance is
successfully deployed, you must create the rules sequentially (one after
another).
What's next
- Troubleshoot next-hop deployment errors
- Troubleshoot TLS inspection errors
- Secure Web Proxy release notes
- Secure Web Proxy support