Can you use cidr notation for ssl exceptions? for vpn do not inspect? I am not seeing any documentation stating if this is okay or not.
You can use CIDR for the VPN Gateway bypasses in the app profile yes.
The VPN Gateway bypasses support single addresses (192.168.0.15) or FQDNs (server.company.com) or networks (192.168.0.1/24).
I’m assuming because it was raised in the Z App category, you are referring the the VPN gateway bypasses, or was this specifically for SSL Inspection?