Cisco Cisco Web Security Appliance S170 ユーザーガイド
21-17
AsyncOS 9.0.1 for Cisco Web Security Appliances User Guide
Chapter 21 Monitor System Activity Through Logs
Web Proxy Information in Access Log Files
BLOCK_ADMIN_CONNECT
Transaction blocked based on the TCP port of the destination as
defined in the HTTP CONNECT Ports setting for the Access
Policy group.
defined in the HTTP CONNECT Ports setting for the Access
Policy group.
BLOCK_ADMIN_CUSTOM_USER_AGENT
Transaction blocked based on the user agent as defined in the
Block Custom User Agents setting for the Access Policy group.
Block Custom User Agents setting for the Access Policy group.
BLOCK_ADMIN_HTTPS_NonLocalDestin
ation
Transaction blocked; client tried to bypass authentication using
the SSL port as an explicit proxy. To prevent this, if an SSL
connection is to the WSA itself, only requests to the actual WSA
redirect hostname are allowed.
the SSL port as an explicit proxy. To prevent this, if an SSL
connection is to the WSA itself, only requests to the actual WSA
redirect hostname are allowed.
BLOCK_ADMIN_IDS
Transaction blocked based on the MIME type of the request
body content as defined in the Data Security Policy group.
body content as defined in the Data Security Policy group.
BLOCK_ADMIN_FILE_TYPE
Transaction blocked based on the file type as defined in the
Access Policy group.
Access Policy group.
BLOCK_ADMIN_PROTOCOL
Transaction blocked based on the protocol as defined in the
Block Protocols setting for the Access Policy group.
Block Protocols setting for the Access Policy group.
BLOCK_ADMIN_SIZE
Transaction blocked based on the size of the response as
defined in the Object Size settings for the Access Policy group.
defined in the Object Size settings for the Access Policy group.
BLOCK_ADMIN_SIZE_IDS
Transaction blocked based on the size of the request body content
as defined in the Data Security Policy group.
as defined in the Data Security Policy group.
BLOCK_AMP_RESP
The Web Proxy blocked the response based on the Advanced
Malware Protection settings for the Access Policy group.
Malware Protection settings for the Access Policy group.
BLOCK_AMW_REQ
The Web Proxy blocked the request based on the Anti-Malware
settings for the Outbound Malware Scanning Policy group. The
request body produced a positive malware verdict.
settings for the Outbound Malware Scanning Policy group. The
request body produced a positive malware verdict.
BLOCK_AMW_RESP
The Web Proxy blocked the response based on the
Anti-Malware settings for the Access Policy group.
Anti-Malware settings for the Access Policy group.
BLOCK_AMW_REQ_URL
The Web Proxy suspects the URL in the HTTP request might
not be safe, so it blocked the transaction at request time based
on the Anti-Malware settings for the Access Policy group.
not be safe, so it blocked the transaction at request time based
on the Anti-Malware settings for the Access Policy group.
BLOCK_AVC
Transaction blocked based on the configured Application
settings for the Access Policy group.
settings for the Access Policy group.
BLOCK_CONTENT_UNSAFE
Transaction blocked based on the site content ratings settings
for the Access Policy group. The client request was for adult
content and the policy is configured to block adult content.
for the Access Policy group. The client request was for adult
content and the policy is configured to block adult content.
BLOCK_CONTINUE_CONTENT_UNSAFE
Transaction blocked and displayed the Warn and Continue page
based on the site content ratings settings in the Access Policy
group. The client request was for adult content and the policy is
configured to give a warning to users accessing adult content.
based on the site content ratings settings in the Access Policy
group. The client request was for adult content and the policy is
configured to give a warning to users accessing adult content.
BLOCK_CONTINUE_CUSTOMCAT
Transaction blocked and displayed the Warn and Continue page
based on a custom URL category in the Access Policy group
configured to “Warn.”
based on a custom URL category in the Access Policy group
configured to “Warn.”
BLOCK_CONTINUE_WEBCAT
Transaction blocked and displayed the Warn and Continue page
based on a predefined URL category in the Access Policy group
configured to “Warn.”
based on a predefined URL category in the Access Policy group
configured to “Warn.”
ACL Decision Tag
Description