Cisco Cisco Web Security Appliance S170 사용자 가이드
9-5
AsyncOS 8.6 for Cisco Web Security Appliances User Guide
Chapter 9 Create Policies to Control Internet Requests
Policies
Note
When you define multiple membership criteria, the client request must meet all criteria to match
the policy.
the policy.
Policy Order
The order in which policies are listed in a policy table determines the priority with which they are applied
to web requests. Web requests are checked against policies beginning at the top of the table and ending
at the first policy matched. Any policies below that point in the table are not processed.
to web requests. Web requests are checked against policies beginning at the top of the table and ending
at the first policy matched. Any policies below that point in the table are not processed.
If no user-defined policy is matched against a web request, then the global policy for that policy type is
applied. Global policies are always positioned last in Policy tables and cannot be re-ordered.
applied. Global policies are always positioned last in Policy tables and cannot be re-ordered.
Creating a Policy
Before you begin
•
Enable the appropriate proxy:
–
Web Proxy (for HTTP, decrypted HTTPS, and FTP)
–
HTTPS Proxy
–
SOCKS Proxy
•
Create associated .
•
.
•
(Encrypted HTTPS only) Upload or generate a Certificate and Key.
•
(Data Security only) Enable Cisco Data Security Filters Settings.
•
(External DLP only) Define an External DLP server.
•
(Routing only) Define the associated upstream proxy on the Web Security appliance.
•
(Optional) Create associated client applications.
•
(Optional) Create associated time ranges. See
Defining Time and Volume Quotas
.
•
(Optional) Create associated URL categories. See
.
•
•
•
Guests – Users connected as guests and those failing authentication.
Related Topics
•
Defining Time and Volume Quotas
•