Cisco Cisco Web Security Appliance S690 User Guide
16-13
AsyncOS 8.8 for Cisco Web Security Appliances User Guide
Chapter 16 Prevent Loss of Sensitive Data
Logging
Note
To learn when data transfer, such as a POST request, to a site was blocked by the external DLP server,
search for the IP address or hostname of the DLP server in the access logs.
search for the IP address or hostname of the DLP server in the access logs.
Field Value
Description
Mon Mar 30 03:02:13 2009 Info:
Timestamp and trace level
303
Transaction ID
10.1.1.1
Source IP address
-
User name
-
Authorized group names
<<bar,text/plain,5120><foo,text/plai
n,5120>>
File name, file type, file size for each file uploaded at once
Note
This field does not include text/plain files that are
less than the configured minimum request body
size, the default of which is 4096 bytes.
less than the configured minimum request body
size, the default of which is 4096 bytes.
BLOCK_WEBCAT_IDS-allowall-DefaultGro
up-DefaultGroup-NONE-DefaultRouting
Cisco IronPort Data Security Policy and action
ns
Web reputation score
server.com
Outgoing URL
nc
URL category