Can you surf via a Symantec proxy?

Forum Moderators: phranque

Message Too Old, No Replies

Can you surf via a Symantec proxy?

SumGuy

12:47 am on Oct 17, 2020 (gmt 0)

I have 3 instances of what looks like human hits from 199.247.46.x, 199.247.45.x, and 199.247.47.x (Sept 9, 25 and October 16). Those IP's are in 199.247.32.0/20 - assigned to Symantec. It's part of AS396982 owned by Google (Google private cloud). A look in that AS shows Blue Coat Systems, Norton Life Lock, Salesforce, and others.

I'm not up on Symantec products - can someone surf the web through them? Like some sort of secure proxy?

I'm not keen on allowing surfing through security add-on products (because I don't really know the ultimate IP source of the browser) but in general I don't see bot activity using them so I figure I'm better off allowing it given that some of my customers are in the institutional / corporate sphere and I can see them using a secure proxy.

lucy24

4:21 am on Oct 17, 2020 (gmt 0)

Have you excluded the possibility that these are individual humans surfing your site from work computers, either as part of the job or following their own interests? Answer will of course depend on the nature of your site, which you may not be in a position to divulge.

Doesn't Bluecoat, specifically, work in tandem with human visits?

Poring through my own logs, I find one clear-cut human visit from 199.247.32.0/20, earlier in the year, timestamped as 12:01, which smacks almost comically of “Whee! Lunchtime! Now I can do my own browsing.” (I am in the same time zone as Silicon Valley.)