Cisco Cisco Web Security Appliance S690 User Guide
5-11
Cisco IronPort AsyncOS 7.7 for Web User Guide
Chapter 5 Web Proxy Services
Bypassing the Web Proxy
Step 4
Submit and commit your changes.
Bypassing the Web Proxy
Note
For information about configuring the Application Scanning Bypass section, see
.
You can configure the Web Security appliance so client requests to or from particular addresses bypass
all processing by the Web Proxy. The proxy bypass list only works for requests that are transparently
redirected to the Web Proxy using an Layer 4 switch or a WCCP v2 router. When the appliance is
deployed in explicit forward mode, or when a client makes an explicit request to the Web Proxy, the
request is processed by the Web Proxy.
all processing by the Web Proxy. The proxy bypass list only works for requests that are transparently
redirected to the Web Proxy using an Layer 4 switch or a WCCP v2 router. When the appliance is
deployed in explicit forward mode, or when a client makes an explicit request to the Web Proxy, the
request is processed by the Web Proxy.
You might want to create a proxy bypass list to accomplish any of the following:
Control Connection
Timeouts
Timeouts
Enter how long the FTP Proxy waits for more communication in the control
connection from an idle FTP client or FTP server when the current
transaction has not been completed.
connection from an idle FTP client or FTP server when the current
transaction has not been completed.
For example, if an FTP client opens a control connection and sends some
requests, the FTP Proxy waits for the amount of time specified for the client
side control connection timeout for the next request before closing the open
connection.
requests, the FTP Proxy waits for the amount of time specified for the client
side control connection timeout for the next request before closing the open
connection.
•
Client side. The maximum number of seconds the FTP Proxy keeps a
control connection open with an idle client.
control connection open with an idle client.
•
Server side. The maximum number of seconds the FTP Proxy keeps a
control connection open with an idle FTP server.
control connection open with an idle FTP server.
Default is 300 seconds for both client and server side control connection
timeouts.
timeouts.
Data Connection
Timeouts
Timeouts
Enter how long the FTP Proxy waits for more communication in the data
connection from an idle FTP client or FTP server when the current
transaction has not been completed.
connection from an idle FTP client or FTP server when the current
transaction has not been completed.
For example, if an FTP client opens a data connection and sends only half
of the request, the FTP Proxy waits for the amount of time specified for the
client side data connection timeout for the rest of the request before closing
the open connection.
of the request, the FTP Proxy waits for the amount of time specified for the
client side data connection timeout for the rest of the request before closing
the open connection.
•
Client side. The maximum number of seconds the FTP Proxy keeps a
data connection open with an idle client.
data connection open with an idle client.
•
Server side. The maximum number of seconds the FTP Proxy keeps a
data connection open with an idle FTP server.
data connection open with an idle FTP server.
Default is 300 seconds for both client and server side data connection
timeouts.
timeouts.
Table 5-2
Property
Description