Cisco Cisco Web Security Appliance S690 User Guide
9-10
AsyncOS 9.1.1 for Cisco Web Security Appliances User Guide
Chapter 9 Classify URLs for Policy Application
Filtering Transactions Using URL Categories
The custom URL categories included in the policy appear in the Custom URL Category Filtering section.
Step 4
In the Custom URL Category Filtering section, choose an action for each included custom URL
category.
category.
Step 5
In the Predefined URL Category Filtering section, choose one of the following actions for each category:
•
Use Global Settings
•
Monitor
•
Warn
•
Block
•
Time-Based
•
Quota-Based
Step 6
In the Uncategorized URLs section, choose the action to take for client requests to web sites that do not
fall into a predefined or custom URL category. This setting also determines the default action for new
and merged categories resulting from URL category set updates.
fall into a predefined or custom URL category. This setting also determines the default action for new
and merged categories resulting from URL category set updates.
Step 7
Submit and Commit Changes.
Action
Description
Use Global
Settings
Settings
Uses the action for this category in the Global Policy Group. This is the default action
for user defined policy groups.
for user defined policy groups.
Applies to user defined policy groups only.
Note
When a custom URL category is excluded in the global Access Policy, then
the default action for included custom URL categories in user defined Access
Policies is Monitor instead of Use Global Settings. You cannot choose Use
Global Settings when a custom URL category is excluded in the global
Access Policy.
the default action for included custom URL categories in user defined Access
Policies is Monitor instead of Use Global Settings. You cannot choose Use
Global Settings when a custom URL category is excluded in the global
Access Policy.
Block
The Web Proxy denies transactions that match this setting.
Redirect
Redirects traffic originally destined for a URL in this category to a location you
specify. When you choose this action, the Redirect To field appears. Enter a URL to
which to redirect all traffic.
specify. When you choose this action, the Redirect To field appears. Enter a URL to
which to redirect all traffic.
Allow
Always allows client requests for web sites in this category.
Allowed requests bypass all further filtering and malware scanning.
Only use this setting for trusted web sites. You might want to use this setting for
internal sites.
internal sites.
Monitor
The Web Proxy neither allows nor blocks the request. Instead, it continues to evaluate
the client request against other policy group control settings, such as web reputation
filtering.
the client request against other policy group control settings, such as web reputation
filtering.
Warn
The Web Proxy initially blocks the request and displays a warning page, but allows
the user to continue by clicking a hypertext link in the warning page.
the user to continue by clicking a hypertext link in the warning page.
Quota-Based
As a individual user approaches either the volume or time quotas you have specified,
a warning is displayed. When a quota is met, a block page is displayed. See
a warning is displayed. When a quota is met, a block page is displayed. See
.
Time-Based
The Web Proxy blocks or monitors the request during the time ranges you specify.
See
See