Cisco Cisco Web Security Appliance S170 Guía Del Usuario
3-24
AsyncOS 9.2 for Cisco Web Security Appliances User Guide
Chapter 3 Connect, Install, and Configure
Using the P2 Data Interface for Web Proxy Data
The number of sections on the Network > Routes page is determined by whether or not split routing
is enabled:
is enabled:
•
Separate route configuration sections for Management and Data traffic (split routing enabled).
When you use the Management interface for management traffic only (Restrict M1 port to
appliance management services only is enabled), then this page includes two sections to enter
routes, one for management traffic and one for data traffic.
When you use the Management interface for management traffic only (Restrict M1 port to
appliance management services only is enabled), then this page includes two sections to enter
routes, one for management traffic and one for data traffic.
•
One route configuration section for all traffic (split routing not enabled). When you use the
Management interface for both management and data traffic (Restrict M1 port to appliance
management services only is disabled), then this page includes one section to enter routes for all
traffic that leaves the Web Security appliance, both management and data traffic.
Management interface for both management and data traffic (Restrict M1 port to appliance
management services only is disabled), then this page includes one section to enter routes for all
traffic that leaves the Web Security appliance, both management and data traffic.
Note
A route gateway must reside on the same subnet as the Management or Data interface on which it is
configured. If multiple data ports are enabled, the web proxy sends out transactions on the data interface
that is on the same network as the default gateway configured for data traffic.
configured. If multiple data ports are enabled, the web proxy sends out transactions on the data interface
that is on the same network as the default gateway configured for data traffic.
Related Topics
•
To enable split routing of management and data traffic, see
Modifying the Default Route
Step 1
Choose Network > Routes.
Step 2
Click on Default Route in the Management or Data table as required (or the combined
Management/Data table if split routing is not enabled).
Management/Data table if split routing is not enabled).
Step 3
In the Gateway column, enter the IP address of the computer system on the next hop of the network
connected to the network interface you are editing.
connected to the network interface you are editing.
Step 4
Submit and commit your changes.
Management Traffic
Data Traffic
•
WebUI
•
SSH
•
SNMP
•
NTLM authentication (with domain controller)
•
ICAP request with external DLP server
•
Syslogs
•
FTP push
•
DNS (configurable)
•
Update/Upgrade/Feature Key (configurable)
•
HTTP
•
HTTPS
•
FTP
•
WCCP negotiation
•
DNS (configurable)
•
Update/Upgrade/Feature Key (configurable)