Cisco Cisco Web Security Appliance S170 ユーザーガイド

Ensure that a Data network interface is enabled on the appliance if you want to use a Data network 
interface for File Reputation and Analysis services. See 

.

Verify connectivity to the update servers configured in

Select Security Services > Anti-Malware and Reputation .

Click Edit Global Settings. 

In the Advanced Malware Protection Services section, select Enable File Reputation Filtering. 

Accept the license agreement if presented.

In the Advanced Malware Protection Services section, select Enable File Analysis. 

In the File Analysis section, select the file types to send to the cloud for analysis.

In the File Analysis section, select the file types to send to the cloud for analysis. 

Adjust the following Advanced settings as desired:

Do not change any other Advanced settings without guidance from Cisco support. 

Submit and commit your changes. 

SSL Communication for File Reputation

Check Use SSL (Port 443) to communicate on port 443 
instead of the default port, 32137.

This option also allows you to configure an upstream proxy 
for communication with the file reputation service.

SSL communication over port 32137 may require 
you to open that port in your firewall.

Routing Table

The routing table (associated with an appliance network 
interface type, either Management or Data) to be used for 
Advanced Malware Protection services. If the appliance 
has both the Management interface and one or more Data 
interfaces enabled, you can select Management or Data.

Reputation Threshold

Use value from Cloud Service

Enter custom value

The upper limit for acceptable file reputation scores. 
Scores above this threshold indicate the file is infected.