Cisco Cisco Web Security Appliance S360 Guía Del Usuario
13-12
Cisco IronPort AsyncOS 7.7.5 for Web User Guide
Chapter 13 Data Security and External DLP Policies
Controlling Upload Requests Using Cisco IronPort Data Security Policies
Web Reputation
The Web Reputation setting inherits the global setting. To customize web reputation filtering for a
particular policy group, you can use the Web Reputation Settings pull-down menu to customize web
reputation score thresholds.
particular policy group, you can use the Web Reputation Settings pull-down menu to customize web
reputation score thresholds.
Only negative and zero values can be configured for web reputation threshold settings for Cisco IronPort
Data Security Policies. By definition, all positive scores are monitored.
Data Security Policies. By definition, all positive scores are monitored.
For more information about configuring web reputation scores, see
.
Content Blocking
You can use the settings on the Cisco IronPort Data Security Policies > Content page to configure the
Web Proxy to block data uploads based on the following file characteristics:
Web Proxy to block data uploads based on the following file characteristics:
•
File size. You can specify the maximum upload size allowed. All uploads with sizes equal to or
greater than the specified maximum are blocked. You can specify different maximum file sizes for
HTTP/HTTPS and native FTP requests.
greater than the specified maximum are blocked. You can specify different maximum file sizes for
HTTP/HTTPS and native FTP requests.
When the upload request size is greater than both the maximum upload size and the maximum scan
size (configured in the “Object Scanning Limits” field on Security Services > Anti-Malware page),
the upload request is still blocked, but the entry in the data security logs does not record the file name
and content type. The entry in the access logs is unchanged.
size (configured in the “Object Scanning Limits” field on Security Services > Anti-Malware page),
the upload request is still blocked, but the entry in the data security logs does not record the file name
and content type. The entry in the access logs is unchanged.
•
File type. You can block predefined file types or custom MIME types you enter. When you block a
predefined file type, you can block all files of that type or files greater than a specified size. When
you block a file type by size, the maximum file size you can specify is the same as the value for the
“Object Scanning Limits” field on Security Services > Anti-Malware page. By default, that value is
32 MB.
predefined file type, you can block all files of that type or files greater than a specified size. When
you block a file type by size, the maximum file size you can specify is the same as the value for the
“Object Scanning Limits” field on Security Services > Anti-Malware page. By default, that value is
32 MB.
Cisco IronPort Data Security Filters do not inspect the contents of archived files when blocking by
file type. Archived files can be blocked by its file type or file name, not according to its contents.
file type. Archived files can be blocked by its file type or file name, not according to its contents.
Note
For some groups of MIME types, blocking one type blocks all MIME types in the group. For
example, blocking application/x-java-applet blocks all java MIME types, such as
application/java and application/javascript.
example, blocking application/x-java-applet blocks all java MIME types, such as
application/java and application/javascript.
•
File name. You can block files with specified names. You can use text as a literal string or a regular
expression for specifying file names to block. For more information on using regular expressions,
see
expression for specifying file names to block. For more information on using regular expressions,
see
Note
Only enter file names with 8-bit ASCII characters. The Web Proxy only matches file names with
8-bit ASCII characters.
8-bit ASCII characters.
shows the Cisco IronPort Data Security Policies > Content page where you
configure the content control settings.