How to inject a custom HTTP/HTTPS header into traffic

This article guides through the process of enabling HTTP/HTTPS header injection using Content Filtering Service (CFS) 4.0.

Common use headers are pre-configured in the appliance.  As of Gen7(7.0.0 and above) and Gen6 (6.5.1.0 and above) the following common use headers are included:

• Google G Suite Restrict- Creates restriction of Google domains a user can access.  i.e. users can only access company Google accounts
• YouTube Strict Mode- Restricts users to access YouTube strict mode
• YouTube Moderate Mode- Restricts users to access YouTube moderate mode

These header injections are applied through the CFS 4.0 engine and can be applied on a per-policy basis.  I.e. students can be applied YouTube strict mode, while teachers can be applied YouTube moderate mode.

3 items are needed to configure:

• Domain for the header to be applied on
• Header Key
• Value for the header

NOTE: For HTTPS sessions, DPI-SSL is required to be able to inject information into the header.

RESOLUTION FOR SONICOS 7.X

This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.

1. Navigate to the Object tab.
2. Access the Profile Objects | Content Filter page .

       3.Click on the CFS Profile Objects button.

       4.Click the configure icon next to the profile you wish to add a custom header on.

      5.Check Enable Custom Header Insertion.

      6.Click Add.  The Add Custom Header Entry pop-up displays

      7.Fill-in the Domain field or select one of the pre-filled options.

      8.If applicable, fill-in the Key and Value fields based on your needs.

      9.Click Save to save your changes.  The policy is now in effect for the modified CFS profile object.

NOTE : If you are trying to add multiple domains in the custom header value field, please make sure to use a comma(,) separator. This header value uses comma-separated list for the allowed domain names.

RESOLUTION FOR SONICOS 6.5

This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.

1. Navigate to the Manage tab.
2. Access the Objects | Content Filter Objects page.
   
3. Click on the CFS Profile Objects button.
4. Click the configure icon next to the profile you wish to add a custom header on.
   
5. Check Enable Custom Header Insertion.
6. Click Add.  The Add Custom Header Entry pop-up displays
   
   
7. Fill-in the Domain field or select one of the pre-filled options.
8. If applicable, fill-in the Key and Value fields based on your needs.
9. Click Save to save your changes.  The policy is now in effect for the modified CFS profile object.

NOTE :If you are trying to add multiple domains in the custom header value field, please make sure to use a comma(,) separator. This header value uses comma-separated list for the allowed domain names.