Cisco Cisco Web Security Appliance S370 Guía Del Usuario
28-7
Cisco IronPort AsyncOS 7.7 for Web User Guide
Chapter 28 Common Tasks
Bypassing Web Reputation Filtering without Bypassing Anti-Malware Scanning
below the configured default score threshold for blocking, such as -6.0). However, you still want to
protect users from malware, so you want to ensure that the sites are scanned by the anti-malware
scanning engines.
protect users from malware, so you want to ensure that the sites are scanned by the anti-malware
scanning engines.
For example, your customer’s website runs on a server with an IP address that also runs irreputable
domains, thereby lowering your customer’s overall reputation score. Your IT department has confirmed
that your organization trusts the customer’s website enough to allow users to access it. By bypassing web
reputation filtering for the customer’s domain, you can still allow users to access it while scanning
downloaded content for malware.
domains, thereby lowering your customer’s overall reputation score. Your IT department has confirmed
that your organization trusts the customer’s website enough to allow users to access it. By bypassing web
reputation filtering for the customer’s domain, you can still allow users to access it while scanning
downloaded content for malware.
This task assumes:
•
The Adaptive Scanning feature is not enabled. When Adaptive Scanning is enabled, you cannot
configure web reputation score thresholds.
configure web reputation score thresholds.
•
You have a list of addresses that you want to bypass for Web Reputation filtering. In this task, you
will bypass Web Reputation filtering for the fictitious site mylowreputationsite.com.
will bypass Web Reputation filtering for the fictitious site mylowreputationsite.com.
•
You want to block all websites with a web reputation score of -7.0 or less. That is, the websites you
want to bypass Web Reputation Filtering have a score higher than -7.0.
want to bypass Web Reputation Filtering have a score higher than -7.0.
Step 1
Navigate to the Web Security Manager > Custom URL Categories page.
Step 2
On the Customer URL Categories page, click Add Custom Category.
Step 3
In the Category Name field, enter a name for this category, such as
BypassWebRep
.
Step 4
In the Sites field, enter the addresses for the websites you want to have bypassed for Web Reputation
filtering. In this task, enter the following addresses:
filtering. In this task, enter the following addresses:
•
mylowreputationsite.com
•
Any other website that has a web reputation score greater than -7.0 that you want to access.
Step 5
Click Submit.
Step 6
Navigate to the Web Security Manager > Identities page.
Step 7
Click Add Identity.
Step 8
In the Name field, enter a name for this policy, such as
WebsitesToBypassWebRep
.
Step 9
Under Membership Definition, click Advanced to expand the advanced policy options.
Step 10
Click the link next to URL Categories.
Step 11
On the Identities: Policy “WebsitesToBypassWebRep”: Membership by URL Categories page, in the
Custom URL Categories section, click in the Add column for the custom URL category created in
Custom URL Categories section, click in the Add column for the custom URL category created in
.
Step 12
Click Done.
Step 13
Click Submit.
Step 14
Navigate to the Web Security Manager > Access Policies page.
Step 15
Click Add Policy.
Step 16
In the Policy Name field, enter a name for this policy, such as
APBypassWebRep
.
Step 17
In the Identities and Users field, choose “Select One or More Identities.”
Step 18
In the Identity field, select the Identity created in
Step 19
Click Submit.
Step 20
On the Access Policies page, click the Web Reputation and Anti-Malware Filtering link for the Access
Policy you created in
Policy you created in