Cisco Cisco Web Security Appliance S190 사용자 가이드

Advanced options. You can configure several advanced options for Decryption Policy group 
membership. Some of the options (such as proxy port, and URL category) can also be defined within 
the Identity. When an advanced option is configured in the Identity, it is not configurable in the 
Decryption Policy group level.

The information in this section gives an overview of how the appliance matches client requests to 
Decryption Policy groups. For more details about exactly how the appliance matches client requests, see 

The Web Proxy sequentially reads through each policy group in the policies table. It compares the client 
request status to the membership criteria of the first policy group. If they match, the Web Proxy applies 
the policy settings of that policy group.

If they do not match, the Web Proxy compares the client request to the next policy group. It continues 
this process until it matches the client request to a user defined policy group. If it does not match a user 
defined policy group, it matches the global policy group. When the Web Proxy matches the client request 
to a policy group or the global policy group, it applies the policy settings of that policy group.

 shows how the Web Proxy evaluates a client request against the Decryption 

Policy groups.