Cisco Cisco Web Security Appliance S170 사용자 가이드

The web proxy controls web traffic based on the policies that you create for groups of transaction 
requests.

Allow. The Web Proxy permits the connection without interruption. Allowed connections may not 
have been scanned by the DVS engine. 

Block. The Web Proxy does not permit the connection and instead displays an end user notification 
page explaining the reason for the block.

Redirect. The Web Proxy does not allow the connection to the originally requested destination 
server and instead connects to a different specified URL. You might want to redirect traffic at the 
appliance if your organization published the links to an internal site, but the location of the site 
changed since publication, or if you do not have control over the web server. 

Generally, different types of policies control traffic based on the transport protocol. 

You can configure AsyncOS to block, allow, or redirect transaction requests based on these 
characteristics of the transaction request:

Identity assigned by AsyncOS to the transaction request

Protocol the transaction will follow

Proxy Port that received the request

Subnet from which the request originated

X

X

X

Decryption policy takes precedence 
over Access policy.

X

X

FTP Policy takes precedence over 
Access policy.

X