Cisco Cisco Web Security Appliance S660 Mode D'Emploi

442

I R O N P O R T   A S Y N C O S   6 . 3   F O R   W E B   U S E R   G U I D E  

The access log file entries aggregate and display the results of Web Reputation filtering and 
anti-malware scanning. The appliance displays this information in angled brackets at the end 
of each access log entry. 

The following text is the Web Reputation filtering and anti-malware scanning information 
from an access log file entry. In this example, the Webroot scanning engine found the 
malware: 

The following text is the Web Reputation filtering and anti-malware scanning information 
from an access log file entry. In this example, the McAfee scanning engine found the 
malware:

Note — For an example of a whole access log file entry, see “Access Log File” on page 436.

Table 20-8 describes the different fields in the Web Reputation filtering and anti-malware 
scanning section of each access log file entry. 

OTHER

The Web Proxy did not complete the request due to an 
error, such as an authorization failure, server 
disconnect, or an abort from the client.

<IW_adv,ns,13,”Comedy-Planet”,-,2116,363786,-,-,-,-,-,-,0,0,IW_adv,->

<IW_adv,ns,0,-,-,-,-,23,”CP22.EXE”,0,1,1,”Generic Downloader.ab”,0,0,
nc,IW_adv>

Table 20-8 Access Log File Entry — Web Reputation and Anti-Malware Information

Field Value 
Example 1

Field Value 
Example 2

Description

IW_adv

IW_adv

The URL category assigned to the transaction, 
abbreviated.
For a list of URL category abbreviations, see “URL 
Category Descriptions” on page 293.

ns

ns

Web Reputation filters score. This field either shows 
the score as a number, “ns” for “no score,” or “dns” 
when there is a DNS lookup error.

Table 20-7 ACL Decision Tag Values (Continued)

ACL Decision Tag

Description