Cisco Cisco Web Security Appliance S690 User Guide
4-4
AsyncOS 9.0 for Cisco Web Security Appliances User Guide
Chapter 4 Intercepting Web Requests
Web Proxy Options for Intercepting Web Requests
Step 4
Complete the advanced web proxy settings as required.
Proxy mode
•
Forward — Allow the client browser to name the internet target.
Requires individual configuration of each web browser to use the web
proxy. The web proxy can intercept only explicitly forwarded web
requests in this mode.
Requires individual configuration of each web browser to use the web
proxy. The web proxy can intercept only explicitly forwarded web
requests in this mode.
•
Transparent (Recommended) — Allow the web proxy to name the
internet target. The web proxy can intercept both transparent and
explicitly forwarded web requests in this mode.
internet target. The web proxy can intercept both transparent and
explicitly forwarded web requests in this mode.
IP Spoofing
•
IP Spoofing
disabled — The web proxy changes the request source IP
address to match its own address to increase security.
•
IP Spoofing
enabled — The web proxy retains the source address so
that it appears to originate from the source client rather than from the
Web Security appliance.
Property
Description
Persistent Connection
Timeout
Timeout
The maximum time in seconds the web proxy keeps open a connection to a
client or server after a transaction has been completed and no further activity
is detected.
client or server after a transaction has been completed and no further activity
is detected.
•
Client side. The timeout value for connections to clients.
•
Server side. The timeout value for connections to servers.
If you increase these values connections will remain open longer and reduce
the overhead used to open and close connections repeatedly. However, you
also reduce the ability of the Web Proxy to open new connections if the
maximum number of simultaneous persistent connections has been reached.
the overhead used to open and close connections repeatedly. However, you
also reduce the ability of the Web Proxy to open new connections if the
maximum number of simultaneous persistent connections has been reached.
Cisco recommends keeping the default values.
In-Use Connection
Timeout
Timeout
The maximum time in seconds that the web proxy waits for more data from
an idle client or server when the current transaction has not yet been com-
pleted.
an idle client or server when the current transaction has not yet been com-
pleted.
•
Client side. The timeout value for connections to clients.
•
Server side. The timeout value for connections to servers.
Simultaneous Persistent
Connections (Server
Maximum Number)
Connections (Server
Maximum Number)
The maximum number of connections (sockets) the Web Proxy keeps open
with servers.
with servers.
Property
Description