Cisco Cisco Web Security Appliance S170 Guía Del Usuario
14-6
AsyncOS 9.0 for Cisco Web Security Appliances User Guide
Chapter 14 File Reputation Filtering and File Analysis
Configuring File Reputation and Analysis Features
Routing Traffic to File Reputation and File Analysis Servers Through a Data Interface
If the appliance is configured to restrict the management port to appliance management services only
(on the Network > Interfaces page), configure the appliance to route file reputation and analysis traffic
through the data port instead.
(on the Network > Interfaces page), configure the appliance to route file reputation and analysis traffic
through the data port instead.
Add routes for data traffic on the Network > Routes page. For general requirements and instructions, see
Configuring TCP/IP Traffic Routes, page 2-19
.
Related Topics
•
Configuring TCP/IP Traffic Routes, page 2-19
Configuring an On-Premises File Analysis Server
If you will use a Cisco AMP Threat Grid Appliance as a private-cloud file analysis server:
•
Obtain the Cisco AMP Threat Grid Appliance Setup and Configuration Guide and the Cisco AMP
Threat Grid Appliance Administration Guide. Cisco AMP Threat Grid Appliance documentation is
available from
Threat Grid Appliance Administration Guide. Cisco AMP Threat Grid Appliance documentation is
available from
Use this documentation to perform the tasks described in this topic.
Additional documentation is available from the Help link in the AMP Threat Grid appliance.
In the Administration Guide, search for information about all of the following: integrations with
other Cisco appliances, CSA, Cisco Sandbox API, WSA, and Web Security Appliances.
other Cisco appliances, CSA, Cisco Sandbox API, WSA, and Web Security Appliances.
•
Set up and configure the Cisco AMP Threat Grid Appliance.
•
If necessary, update your Cisco AMP Threat Grid Appliance software to version 1.2.1, which
supports integration with Cisco Web Security appliances.
supports integration with Cisco Web Security appliances.
See the AMP Thread Grid documentation for instructions for determining the version number and
for performing the update.
for performing the update.
•
Ensure that your appliances can communicate with each other over your network. Cisco Web
Security appliances must be able to connect to the CLEAN interface of the AMP Threat Grid
appliance.
Security appliances must be able to connect to the CLEAN interface of the AMP Threat Grid
appliance.
For Connection To
Destination Network
Gateway
The file reputation service Host name of the Cloud Server Pool, as
configured in Security Services >
Anti-Malware and Reputation, Advanced
section: Advanced Settings for File
Reputation.
Anti-Malware and Reputation, Advanced
section: Advanced Settings for File
Reputation.
IP address of the gateway for
the data port
the data port
The file analysis service
Host name of the File Analysis Server, as
configured in Security Services >
Anti-Malware and Reputation, Advanced
section: Advanced Settings for File
Analysis.
configured in Security Services >
Anti-Malware and Reputation, Advanced
section: Advanced Settings for File
Analysis.
IP address of the gateway for
the data port
the data port