Cisco Cisco Web Security Appliance S170 Guida Utente
136
I R O N P O R T A S Y N C O S 6 . 5 F O R W E B U S E R G U I D E
WO R K I N G W I T H T I M E B A S E D PO L I C I E S
The Web Security appliance provides the means to create time based policies by specifying
time ranges, such as business hours, and using those time ranges to define access to the web.
You can define policy group membership based on time ranges, and you can specify actions
for URL filtering based on time ranges.
time ranges, such as business hours, and using those time ranges to define access to the web.
You can define policy group membership based on time ranges, and you can specify actions
for URL filtering based on time ranges.
You might want to use time ranges to accomplish the following tasks:
• You can block access to high bandwidth sites, such as streaming media, or distracting
sites, such as games, during business hours.
• You can route transactions to a particular external proxy after midnight when the other
proxies are being serviced.
• You can allow larger files to be downloaded on the weekends.
Define time ranges on the Web Security Manager > Time Ranges page. You can create time
ranges to define concepts such as “business hours” or “weekend shift.” Then you can use the
time ranges in the following locations:
ranges to define concepts such as “business hours” or “weekend shift.” Then you can use the
time ranges in the following locations:
• Policy group membership for a Routing, Access, or Decryption Policy.
• URL filtering settings for Access Policies.
When you define a time range, you can specify the day(s) of the week and the time of day. A
transaction matches the time range when it occurs on one of the days specified and during the
time specified. You can also define multiple combinations of day and time in a single time
range. For example, you can define a time range that applies to transactions that occur on
Monday through Friday from 08:00 to 17:00 or on Saturday from 09:00 to 13:00.
transaction matches the time range when it occurs on one of the days specified and during the
time specified. You can also define multiple combinations of day and time in a single time
range. For example, you can define a time range that applies to transactions that occur on
Monday through Friday from 08:00 to 17:00 or on Saturday from 09:00 to 13:00.
Policies and URL filtering actions can be defined inside or outside the defined time ranges.
Note — Because you can define time based policy group membership only for Routing,
Access, and Decryption Policies, but not Identities, you cannot create time based policies that
define when users must authenticate. Authentication requirements are defined in Identity
groups, but time based policies are defined in other policy group types. (bug #41723)
Access, and Decryption Policies, but not Identities, you cannot create time based policies that
define when users must authenticate. Authentication requirements are defined in Identity
groups, but time based policies are defined in other policy group types. (bug #41723)
Creating Time Ranges
To create a time range:
1. Go to Web Security Manager > Time Ranges.
2. Click Add Time Range.
The Add Time Range page appears.