Cisco Cisco Web Security Appliance S670 Guida Utente
16-3
AsyncOS 8.1 for Cisco Web Security User Guide
Chapter 16 Notify End-Users of Proxy Actions
General Notification Settings
Entering the custom URL for notification pages:
•
You can use any HTTP or HTTPS URL.
•
The URL may specify a specific port number.
•
The URL may not have any arguments after the question mark.
•
The URL must contain a well-formed hostname.
For example, if you have the following URL entered in the Redirect to Custom URL field:
http://www.example.com/eun.policy.html
And you have the following access log entry:
Then AsyncOS creates the following redirected URL:
Enabling the End-user Acknowledgment Page
•
When a user is tracked by IP address, the appliance uses the shortest value for maximum time
interval and maximum IP address idle timeout to determine when to display the end-user
acknowledgment page again.
interval and maximum IP address idle timeout to determine when to display the end-user
acknowledgment page again.
•
When a user is tracked using a session cookie, the Web Proxy displays the end-user acknowledgment
page again if the user closes and then reopens their web browser or opens a second web browser
application.
page again if the user closes and then reopens their web browser or opens a second web browser
application.
•
Using a session cookie to track users when the client accesses HTTPS sites or FTP servers using
FTP over HTTP does not work.
FTP over HTTP does not work.
•
When the appliance is deployed in explicit forward mode and a user goes to an HTTPS site, the
end-user acknowledgment page includes only the domain name in the link that redirects the user to
the originally requested URL. If the originally requested URL contains text after the domain name,
that text is truncated.
end-user acknowledgment page includes only the domain name in the link that redirects the user to
the originally requested URL. If the originally requested URL contains text after the domain name,
that text is truncated.
•
When the end-user acknowledgment page is displayed to a user, the access log entry for that
transaction shows OTHER as the ACL decision tag. This is because the originally requested URL
was blocked, and instead the user was shown the end-user acknowledgment page.
transaction shows OTHER as the ACL decision tag. This is because the originally requested URL
was blocked, and instead the user was shown the end-user acknowledgment page.
General Notification Settings
•
•
1182468145.492 1 172.17.0.8 TCP_DENIED/403 3146 GET http://www.espn.com/index.html
HTTP/1.1 - NONE/- - BLOCK_WEBCAT-DefaultGroup-DefaultGroup-NONE-NONE-DefaultRouting
<IW_sprt,-,-,-,-,-,-,-,-,-,-,-,-,-,-,IW_sprt,-> -
http://www.example.com/eun.policy.html?Time=21/Jun/
2007:23:22:25%20%2B0000&ID=0000000004&Client_IP=172.17.0.8&User=-
&Site=www.espn.com&URI=index.html&Status_Code=403&Decision_Tag=
BLOCK_WEBCAT-DefaultGroup-DefaultGroup-NONE-NONE-DefaultRouting
&URL_Cat=Sports%20and%20Recreation&WBRS=-&DVS_Verdict=-&
DVS_ThreatName=-&Reauth_URL=-