Cisco Cisco Web Security Appliance S690 User Guide
1-2
AsyncOS 10.0 for Cisco Web Security Appliances User Guide
Chapter 1 Introduction to the Product and the Release
What’s New
What’s New in Cisco AsyncOS 10.0.0-142 (LD)
Feature
Description
Referrer Exceptions
You can now define exceptions to the default actions configured for
embedded/referred content. A Website may embed or refer to content
that is categorized differently than the source page, or that is considered
an application of a different type than the source. By default,
embedded/referred content is blocked or monitored based on the action
selected for its assigned category or application, regardless of how the
source Website is categorized. See “Exceptions to Blocking for
Embedded and Referred Content” on page 9- 11.
embedded/referred content. A Website may embed or refer to content
that is categorized differently than the source page, or that is considered
an application of a different type than the source. By default,
embedded/referred content is blocked or monitored based on the action
selected for its assigned category or application, regardless of how the
source Website is categorized. See “Exceptions to Blocking for
Embedded and Referred Content” on page 9- 11.
AMP Private Cloud
A Cisco AMP Virtual Private Cloud appliance can now be deployed
on-premises in “air-gap” mode to provide private file reputation filtering
for connected WSAs. See “Enabling and Configuring the File
Reputation and Analysis Services” on page 14- 8.
on-premises in “air-gap” mode to provide private file reputation filtering
for connected WSAs. See “Enabling and Configuring the File
Reputation and Analysis Services” on page 14- 8.
AMP Reporting
enhancements
enhancements
The AMP-related report pages have been enhanced, including new
reporting panels and displays, additional columns of information in
existing reporting panels, as well as cross-links between certain reports.
reporting panels and displays, additional columns of information in
existing reporting panels, as well as cross-links between certain reports.
Retrospective alerts now provide additional information, including file
name and total number of users infected. In addition, the formatting of
retrospective alerts has been updated to make them more “readable.”
name and total number of users infected. In addition, the formatting of
retrospective alerts has been updated to make them more “readable.”
A new log-entry field was added to the access logs; a file-verdict number
appended to the end of the log entry, as follows:
appended to the end of the log entry, as follows:
1 - UNKNOWN
2 - CLEAN
3 – MALICIOUS
4 - UNSCANNABLE
Updated User Agents list
The list of available user agents available for selection during policy
definition has been updated and expanded. This list is presented on the
Advanced > Membership by User Agent page, which is accessed from a
number of feature pages such as Identification Profiles, Routing Policies,
and so on.
definition has been updated and expanded. This list is presented on the
Advanced > Membership by User Agent page, which is accessed from a
number of feature pages such as Identification Profiles, Routing Policies,
and so on.
Intermediate Certificates
You can now use the CLI command
advancedproxyconfig
>
HTTPS
to
enable “intermediate certificate discovery,” a process the WSA uses in
an attempt to eliminate the need to manually locate and download the
intermediate certificate store to prevent intermediate certificate
verification failures. See “Web Security Appliance CLI Commands” on
page B- 6.
an attempt to eliminate the need to manually locate and download the
intermediate certificate store to prevent intermediate certificate
verification failures. See “Web Security Appliance CLI Commands” on
page B- 6.
Live (third-party) Feeds
You can define custom URL categories based on data feeds from an
external server. These live-feed custom URL categories can be used in
policy definition. See “Creating and Editing Custom URL Categories”
on page 9- 14.
external server. These live-feed custom URL categories can be used in
policy definition. See “Creating and Editing Custom URL Categories”
on page 9- 14.