Cisco Cisco Web Security Appliance S690 Guida Utente
12-6
Cisco IronPort AsyncOS 7.7 for Web User Guide
Chapter 12 Outbound Malware Scanning
Controlling Upload Requests Using Outbound Malware Scanning Policies
Step 7
Submit your changes.
Step 8
Configure Outbound Malware Scanning Policy group control settings to define how the Web Proxy
handles transactions.
handles transactions.
The new Outbound Malware Scanning Policy group automatically inherits global policy group settings
until you configure options for each control setting. For more information, see
until you configure options for each control setting. For more information, see
.
Step 9
Submit and commit your changes.
Controlling Upload Requests Using Outbound Malware
Scanning Policies
Scanning Policies
Each upload request is assigned to an Outbound Malware Scanning Policy group and inherits the control
settings of that policy group. The control settings of the Outbound Malware Scanning Policy group
determine whether or not to scan the upload request for malware and, if scanned, which malware types
to block.
settings of that policy group. The control settings of the Outbound Malware Scanning Policy group
determine whether or not to scan the upload request for malware and, if scanned, which malware types
to block.
After the Web Proxy receives the upload request headers, it has all the information necessary to decide
if it should scan the request body. The DVS engine scans the request and returns a verdict to the Web
Proxy: either block or monitor (evaluate the request against the Access Policies). The block page appears
to the end user, if applicable.
if it should scan the request body. The DVS engine scans the request and returns a verdict to the Web
Proxy: either block or monitor (evaluate the request against the Access Policies). The block page appears
to the end user, if applicable.
groups.
User Agents
Choose whether or not to define policy group membership by the user agent used
in the client request. You can select some commonly defined browsers, or define
your own using regular expressions. Choose whether this policy group should
apply to the selected user agents or to any user agent that is not in the list of selected
user agents.
in the client request. You can select some commonly defined browsers, or define
your own using regular expressions. Choose whether this policy group should
apply to the selected user agents or to any user agent that is not in the list of selected
user agents.
For more information on creating user agent based policies, see
Note: If the Identity associated with this policy group defines Identity membership
by this advanced setting, the setting is not configurable at the non-Identity policy
group level.
by this advanced setting, the setting is not configurable at the non-Identity policy
group level.
User Location
Choose whether or not to define policy group membership by user location, either
remote or local.
remote or local.
This option only appears when the Secure Mobility is enabled. For more
information, see
information, see
.
Table 12-1
Outbound Malware Scanning Policy Group Advanced Options (continued)
Advanced Option
Description