Cisco Cisco Web Security Appliance S170 사용자 가이드
21-3
Cisco IronPort AsyncOS 7.7.5 for Web User Guide
Chapter 21 L4 Traffic Monitor
Configuring the L4 Traffic Monitor
Configuring L4 Traffic Monitor Global Settings
On the Security Services > L4 Traffic Monitor page, you can configure the L4 Traffic Monitor global
settings and update the L4 Traffic Monitor anti-malware rules.
settings and update the L4 Traffic Monitor anti-malware rules.
Figure 21-1
Security Services > L4 Traffic Monitor Page
Step 1
Navigate to the Security Services > L4 Traffic Monitor page.
Step 2
Click Edit Global Settings.
Step 3
Choose whether or not to enable the L4 Traffic Monitor.
Step 4
When you enable the L4 Traffic Monitor, choose which ports it should monitor:
•
All ports. Monitors all 65535 TCP ports for rogue activity.
•
All ports except proxy ports. Monitors all TCP ports except the following ports for rogue activity.
–
Ports configured in the “HTTP Ports to Proxy” property on the Security Services > Web Proxy
page (usually port 80).
page (usually port 80).
–
Ports configured in the “Transparent HTTPS Ports to Proxy” property on the Security Services
> HTTPS Proxy page (usually port 443).
> HTTPS Proxy page (usually port 443).
Step 5
Submit and commit the changes.
Updating L4 Traffic Monitor Anti-Malware Rules
Step 1
Navigate to the Security Services > L4 Traffic Monitor page.
Step 2
Click Update Now.
The Web Security appliance contacts the component update server and updates the L4 Traffic Monitor
anti-malware rules. For more information about the component update server, see
anti-malware rules. For more information about the component update server, see
.
Configuring L4 Traffic Monitor Policies
When the L4 Traffic Monitor is enabled, you can configure how it should manage traffic over the
configured TCP ports. It can perform the following actions on traffic over the TCP ports:
configured TCP ports. It can perform the following actions on traffic over the TCP ports:
•
Allow