Cisco Cisco Web Security Appliance S690 User Guide
17-21
Cisco IronPort AsyncOS 7.7 for Web User Guide
Chapter 17 URL Filters
Creating Time Based URL Filters
•
Default warning text provided by Cisco
•
Custom text provided by the Web Security appliance administrator (optional)
•
Notification code listing the invoked Access Policy and the URL category being warned or the safe
browsing scanning verdict.
browsing scanning verdict.
•
A hypertext link to the originally requested URL
Users are tracked in the access log by user name if authentication has made a user name available, and
tracked by IP address if no user name is available.
tracked by IP address if no user name is available.
When you use the warn and continue feature, you can configure the following settings that affect the
end-user URL filtering warning page:
end-user URL filtering warning page:
•
Time Between Warning. The Time Between Warning determines how often the Web Proxy displays
the end-user URL filtering warning page for each URL category per user. Once a user clicks the
continue link on the end-user URL filtering warning page, the Web Proxy considers that user to have
acknowledged the warning for the time you enter for the Time Between Warning. This setting
applies to users tracked by username and users tracked by IP address. You can specify any value
from 30 to 2678400 seconds (one month). Default is 1 hour (3600 seconds).
the end-user URL filtering warning page for each URL category per user. Once a user clicks the
continue link on the end-user URL filtering warning page, the Web Proxy considers that user to have
acknowledged the warning for the time you enter for the Time Between Warning. This setting
applies to users tracked by username and users tracked by IP address. You can specify any value
from 30 to 2678400 seconds (one month). Default is 1 hour (3600 seconds).
•
Custom message. The custom message is text you enter that appears on every end-user URL
filtering warning page. You might want to include text for the organization’s acceptable use policies,
or include a link to a page that details the acceptable use policies. You can include some simple
HTML tags to format the text. For example, you can change the color and size of the text, or make
it italicized. See
filtering warning page. You might want to include text for the organization’s acceptable use policies,
or include a link to a page that details the acceptable use policies. You can include some simple
HTML tags to format the text. For example, you can change the color and size of the text, or make
it italicized. See
for more information.
Configure these settings on the Security Services > End-User Notification page. For more information,
see
see
.
Note
The warn and continue feature only works for HTTP and decrypted HTTPS transactions. It does not
work with native FTP transactions.
work with native FTP transactions.
User Experience When Warning Users
When the URL filtering engine warns users for a particular request, it provides a warning page that the
Web Proxy sends to the end user. However, not all websites display the warning page to the end user. For
example, some Web 2.0 websites display dynamic content using javascript instead of a static webpage
and are not likely to display the warning page from the Web Proxy. When this happens, users are blocked
from the URL that is assigned the Warn option without being given the chance to continue accessing the
site anyway.
Web Proxy sends to the end user. However, not all websites display the warning page to the end user. For
example, some Web 2.0 websites display dynamic content using javascript instead of a static webpage
and are not likely to display the warning page from the Web Proxy. When this happens, users are blocked
from the URL that is assigned the Warn option without being given the chance to continue accessing the
site anyway.
Creating Time Based URL Filters
You can configure how the Web Security appliance to handles requests for URLs in particular categories
differently based on time and day. For example, you can block access to social networking sites, such as
blogs and forums, during business hours.
differently based on time and day. For example, you can block access to social networking sites, such as
blogs and forums, during business hours.
To define URL filtering actions by time you must first define at least one time range. For information
about time ranges, see
about time ranges, see
Step 1
Navigate to the Web Security Manager > Access Policies page.