Cisco Cisco Web Security Appliance S360 User Guide
12-17
Cisco IronPort AsyncOS 7.1 for Web User Guide
OL-23207-01
Chapter 12 Data Security and External DLP Policies
Controlling Upload Requests Using IronPort Data Security Policies
URL Categories
AsyncOS for Web allows you to configure how the appliance handles a
transaction based on the URL category of a particular request. Using a predefined
category list, you can choose to monitor or block content by category. You can
also create custom URL categories and choose to allow, monitor, or block traffic
for a website in the custom category.
transaction based on the URL category of a particular request. Using a predefined
category list, you can choose to monitor or block content by category. You can
also create custom URL categories and choose to allow, monitor, or block traffic
for a website in the custom category.
For more information about working with URL categories, see
.
Web Reputation
The Web Reputation setting inherits the global setting. To customize web
reputation filtering for a particular policy group, you can use the Web Reputation
Settings pull-down menu to customize web reputation score thresholds.
reputation filtering for a particular policy group, you can use the Web Reputation
Settings pull-down menu to customize web reputation score thresholds.
Only negative and zero values can be configured for web reputation threshold
settings for IronPort Data Security Policies. By definition, all positive scores are
monitored.
settings for IronPort Data Security Policies. By definition, all positive scores are
monitored.
For more information about configuring web reputation scores, see
.
Content Blocking
You can use the settings on the IronPort Data Security Policies > Content page to
configure the Web Proxy to block data uploads based on the following file
characteristics:
configure the Web Proxy to block data uploads based on the following file
characteristics:
•
File size. You can specify the maximum upload size allowed. All uploads
with sizes equal to or greater than the specified maximum are blocked. You
can specify different maximum file sizes for HTTP/HTTPS and native FTP
requests.
with sizes equal to or greater than the specified maximum are blocked. You
can specify different maximum file sizes for HTTP/HTTPS and native FTP
requests.
When the upload request size is greater than both the maximum upload size
and the maximum scan size (configured in the “Object Scanning Limits” field
on Security Services > Anti-Malware page), the upload request is still
blocked, but the entry in the data security logs does not record the file name
and content type. The entry in the access logs is unchanged.
and the maximum scan size (configured in the “Object Scanning Limits” field
on Security Services > Anti-Malware page), the upload request is still
blocked, but the entry in the data security logs does not record the file name
and content type. The entry in the access logs is unchanged.