Cisco Cisco Web Security Appliance S170 ユーザーガイド

Communication with cloud services for file reputation and analysis occurs over IPv4. 

The following firewall ports must be open: 

When you configure the file reputation feature, choose whether to use SSL over port 443. 

If the appliance is configured to restrict the management port to appliance management services only 
(on the Network > Interfaces page), configure the appliance to route file reputation and analysis traffic 
through the data port instead.

Add routes for data traffic on the Network > Routes page. For general requirements and instructions, see 

Acquire feature keys for the file reputation service and the file analysis service.

Meet the 

.

32137 
(default
) or 443 

Access to cloud services 
for obtaining file 
reputation. 

TCP 

Out 

As configured in Security Services > 
Anti-Malware and Reputation, Advanced 
section, Cloud Server Pool parameter. 

Management, 
unless a static 
route is 
configured to 
route this 
traffic through 
a data port. 

443

Access to cloud services 
for file analysis. 

TCP 

Out 

As configured in Security Services > 
Anti-Malware and Reputation, Advanced 
section. 

The file reputation service IP addresses of the Cloud Server Pool, as 

configured in Security Services > 
Anti-Malware and Reputation, Advanced 
section. 

IP address of the gateway for 
the data port 

The file analysis service 

IP address of the File Analysis Server, as 
configured in Security Services > 
Anti-Malware and Reputation, Advanced 
section. 

IP address of the gateway for 
the data port