Route via URL

Question

I've seen a couple of forum questions about this but not found a straight answer. 
 I want to route traffic requests of type "Content Delivery" via another gateway. I don't believe this is possible under the current XG. From what I understand the "selectors" for a firewall rule are source, destination, service, and identity. Once those are matched, the rule is selected and the rest of the rule just governs what happens next. Either the traffic will be allowed or denied based on that, but another rule will not be used once this rule is selected by the firewall. For this to work, I would need to be able to use an Application as a selector. Is that correct? 
 So the next thing I tried was to create an fqdn host for "officecdn.microsoft.com", but this doesn't work. I think this doesn't work because the fqdn host in XG is not as smart as SG and doesn't have a way to resolve all the possible IP's for the hostname - it just does a lookup and sticks to it. 
 The final thing to try would be to gather all the possible IP's for officecdn.microsoft.com and create an IP list out of that, like you would on a basic Cisco router. There are hundreds of IP's for a cdn though and that doesn't sound like fun at all. Also, those IP's may not always be cdn traffic, depending on the url used. 
 Any suggestions? 
 Thanks 
 James

jamesharper · Accepted Answer

So... it turns out that I may have been a bit impatient. After a while, the FQDN Host entries were populated with lots of IP addresses, and the rule seemed to work. 
 This isn't really ideal - it would be much better if firewall rules could be selected on the basis of Web Category, or at least if routing decisions could be made on the basis of Web Category. 
 But the problem for now is resolved - bulk cdn traffic is going via another link and the performance on the main link is acceptable once more. 
 James