Cisco Cisco Web Security Appliance S170 Guida Utente

Web Security appliance and upstream proxy server use Basic authentication.

Credential Encryption is enabled on the downstream Web Security appliance. 

Client requests fail on the upstream proxy because the Web Proxy receives an “Authorization” HTTP 
header from clients, but the upstream proxy server requires a “Proxy-Authorization” HTTP header. 

If your network contains an upstream proxy that does not support FTP connections, then you must create 
a Routing Policy that applies to all Identities and to just FTP requests. Configure that Routing Policy to 
directly connect to FTP servers or to connect to a proxy group whose proxies all support FTP 
connections. 

The following actions on your virtual host are the equivalent of pulling the plug on a hardware appliance 
and are not supported, especially during AsyncOS startup:

In KVM, the Force Reset option. 

In VMWare, the Power Off and Reset options. (These options are safe to use after the appliance has 
come up completely.)

Network connectivity is lost after previously working. 

This is a KVM issue. See the section on "KVM: Network connectivity works initially, then 

fails" in the OpenStack documentation at 

. 

Appliance performance is slow, watchdog issues occur, and the appliance shows unusually high 

CPU usage when running on an Ubuntu virtual machine. 

Install the latest Host OS updates from Ubuntu.