Cisco Cisco Web Security Appliance S170 사용자 가이드

C O N F I G U R I N G T H E L 4 T R A F F I C M O N I T O R

C H A P T E R 1 8 : L 4 T R A F F I C M O N I T O R

409

C O N F I G U R I N G T H E L 4 TR A F F I C M O N I T O R

The L4 Traffic Monitor can be enabled as part of an initial system setup using the System
Setup Wizard. By default, the L4 Traffic Monitor is enabled and set to monitor traffic on all
ports. This includes DNS and other services.

Note — To monitor true client IP addresses, the L4 Traffic Monitor should always be
configured inside the firewall and before network address translation (NAT). For more
information about deploying the L4 Traffic Monitor, see “Deploying the L4 Traffic Monitor” on
page 41.

You can configure the following settings:

• Global L4 Traffic Monitor settings. You can enable or disable the L4 Traffic Monitor after

an initial configuration and configure which TCP ports to monitor. Use the Security
Services > L4 Traffic Monitor page. For more information see “Configuring L4 Traffic
Monitor Global Settings” on page 409.

• L4 Traffic Monitor policies. When the L4 Traffic Monitor is enabled, you configure

specific policies for managing traffic. Use the Web Security Manager > L4 Traffic Monitor
Policies page. For more information see “Configuring L4 Traffic Monitor Policies” on
page 410.

Configuring L4 Traffic Monitor Global Settings

On the Security Services > L4 Traffic Monitor page, you can configure the L4 Traffic Monitor
global settings and update the L4 Traffic Monitor anti-malware rules.

Figure 18-1 Security Services > L4 Traffic Monitor Page

To configure L4 Traffic Monitor global settings:

1. Navigate to the Security Services > L4 Traffic Monitor page.

2. Click Edit Global Settings.

3. Choose whether or not to enable the L4 Traffic Monitor.

4. When you enable the L4 Traffic Monitor, choose which ports it should monitor:

• All ports. Monitors all 65535 TCP ports for rogue activity.