Cisco Cisco Web Security Appliance S680 Guía Del Usuario
C H A P T E R
7-1
Cisco IronPort AsyncOS 7.7 for Web User Guide
7
Policies
•
•
•
•
•
•
•
•
Overview of Policies
Policies are the means by which you control transactions based on users, groups, and other criteria.
Example policies:
Example policies:
•
Users in the Marketing group can access a competitor’s website, but other users cannot.
•
Guest users on customer-facing machines, such as computers in a company store, cannot access
banking sites, but employees can.
banking sites, but employees can.
•
No users can access gambling sites. Instead, when they try to view a gambling site, they see a web
page that explains the organization’s policies.
page that explains the organization’s policies.
•
All users trying to access a particular site that no longer exists are redirected to a different site.
•
All users except those in IT are blocked from accessing potential malware sites, but users in IT can
access them for testing purposes, and the downloaded content is scanned for harmful objects.
access them for testing purposes, and the downloaded content is scanned for harmful objects.
•
All requests for streaming media are blocked during business hours, but allowed outside of business
hours.
hours.
•
All requests from a particular user agent, such as a software update program, are allowed without
requiring authentication.
requiring authentication.
•
Block uploads of all Excel spreadsheet files greater than 2 MB.
•
Block uploads of data to sites with a bad web reputation.
•
Block uploads of data infected with malware.