Cisco Cisco Web Security Appliance S680 Guía Del Usuario
226
I R O N P O R T A S Y N C O S 6 . 3 F O R W E B U S E R G U I D E
Figure 11-3 Applying Data Security Policy Actions
URL Categories
AsyncOS for Web allows you to configure how the appliance handles a transaction based on
the URL category of a particular request. Using a predefined category list, you can choose to
the URL category of a particular request. Using a predefined category list, you can choose to
Is the URL category of the request URL in the policy group’s
list of custom URL categories?
No, or Yes, action is Monitor
Yes, action
is Allow.
is Allow.
Evaluate the request against the External DLP
Policies, if configured.
Otherwise, evaluate against the Access Policies
Yes, action is Block
Is the URL category of the request URL in the Access Policy
group’s list of predefined URL categories?
No, or Yes, action is Monitor.
Does the reputation score of the destination server indicate
to block the connection?
No
Is the request body size larger than the maximum allowed
(as determined by the Content-Length header)?
No
Block the connection.
Receive upload request from client.
Yes, action is Block
Yes
Yes
Is the request body file name in the list of file names to block?
Yes
No
Is the request body file name in the list of regular
expression file names to block?
No
Yes
Is the size of the request body content greater than the
maximum size allowed for the MIME type?
No
Yes, or all sizes
are blocked
are blocked
Does the request body content match a blocked custom or
predefined MIME type?
Yes
No
Body has no
file name
file name
Is the request body size smaller than the minimum request
body size (as determined by
datasecurityconfig)?
No
Yes