Ask the community

Netskope Client and PAC files


If you have PAC files or WPAD deployed to user base here are recommended settings:


1. Following traffic needs to go via PAC
2. Following traffic needs to go DIRECT
3. Do not use Netskope consolidated IP ranges in the PAC file. If you add global range the "addon" traffic will also fall under that range.
Sample PAC file:
Here is a typical PAC file syntax. Check what's the ultimate "return" statement. The address ""  in this PAC file is the Netskope Explicit Proxy over Tunnel IP address. 





/* Don't proxy to access to Netskope URLs for clients     */

      if (shExpMatch(host, 'gateway-<TENANT_NAME>'))

         { return 'DIRECT'; }

(repeat for the other domains in # 2 above)





/* Use on-prem proxy unless client IP is in scope for cloud proxy */

/*      if (isInNet(clientIP, '', '')      */

/*          || isInNet(clientIP, '', '')  */

/*        { return 'PROXY; DIRECT';}    */


/* When not handled above, use on-prem proxy */

       return 'PROXY; DIRECT'; }


Contact your Bluecoat or PAC file administrator for the syntax in your version of the PAC file. Most PAC files have a If and 


1 Reply 1
Community Manager
Community Manager

Thanks for sharing with our Netskope community @MM_NS 😀

Best Wishes
Rohit Bhaskar
Top Liked Authors

In order to view this content, you will need to sign in to your account. Simply click the "Sign In" button below

Sign In