Cisco Cisco Web Security Appliance S170 사용자 가이드
23-35
Cisco IronPort AsyncOS 7.7.5 for Web User Guide
Chapter 23 Web Security Appliance Reports
Web Tracking Page
Note
If you need to view more than 1000 results, click the Printable Download link to obtain a CSV
file that includes the complete set of raw data, excluding details of related transactions.
file that includes the complete set of raw data, excluding details of related transactions.
Tip
If a URL in the results is truncated, you can find the full URL in the access log.
To view details for up to 500 related transactions, click the Related Transactions link.
Searching for Transactions Processed by the L4 Traffic Monitor
The L4 Traffic Monitor tab on the Reporting > Web Tracking page provides details about connections
to malware sites and ports. You can search for connections to malware sites by the following types of
information:
to malware sites and ports. You can search for connections to malware sites by the following types of
information:
•
Time range
•
Site, using IP address or domain
•
Port
•
IP address associated with a computer in your organization
•
Connection type
The first 1000 matching search results are displayed.
To view the hostname at the questionable site, click the Display Details link in the Destination IP
Address column heading.
Address column heading.
Searching for Transactions Processed by the SOCKS Proxy
You can search for transactions that meet a variety of criteria, including blocked or completed
transactions; users; and destination domain, IP address, or port. You can also filter results by custom
URL category, policy matched, and user location (local or remote).
transactions; users; and destination domain, IP address, or port. You can also filter results by custom
URL category, policy matched, and user location (local or remote).
Step 1
Choose Web > Reporting > Web Tracking.
Step 2
Click the SOCKS Proxy tab.
Step 3
To filter results, click Advanced.
Step 4
Enter search criteria.
Step 5
Click Search.
Related Topics
•