Cisco Cisco Web Security Appliance S170 사용자 가이드
21-3
Cisco IronPort AsyncOS 7.7 for Web User Guide
Chapter 21 L4 Traffic Monitor
Configuring the L4 Traffic Monitor
•
L4 Traffic Monitor policies. When the L4 Traffic Monitor is enabled, you configure specific
policies for managing traffic. Use the Web Security Manager > L4 Traffic Monitor Policies page.
For more information see
policies for managing traffic. Use the Web Security Manager > L4 Traffic Monitor Policies page.
For more information see
Configuring L4 Traffic Monitor Global Settings
On the Security Services > L4 Traffic Monitor page, you can configure the L4 Traffic Monitor global
settings and update the L4 Traffic Monitor anti-malware rules.
settings and update the L4 Traffic Monitor anti-malware rules.
Figure 21-1
Security Services > L4 Traffic Monitor Page
Step 1
Navigate to the Security Services > L4 Traffic Monitor page.
Step 2
Click Edit Global Settings.
Step 3
Choose whether or not to enable the L4 Traffic Monitor.
Step 4
When you enable the L4 Traffic Monitor, choose which ports it should monitor:
•
All ports. Monitors all 65535 TCP ports for rogue activity.
•
All ports except proxy ports. Monitors all TCP ports except the following ports for rogue activity.
–
Ports configured in the “HTTP Ports to Proxy” property on the Security Services > Web Proxy
page (usually port 80).
page (usually port 80).
–
Ports configured in the “Transparent HTTPS Ports to Proxy” property on the Security Services
> HTTPS Proxy page (usually port 443).
> HTTPS Proxy page (usually port 443).
Step 5
Submit and commit the changes.
Updating L4 Traffic Monitor Anti-Malware Rules
Step 1
Navigate to the Security Services > L4 Traffic Monitor page.
Step 2
Click Update Now.
The Web Security appliance contacts the component update server and updates the L4 Traffic Monitor
anti-malware rules. For more information about the component update server, see
anti-malware rules. For more information about the component update server, see
.