Cisco Cisco Web Security Appliance S170 사용자 가이드

IP address information

Cisco does not collect identifiable information such as user names, passwords, or client IP addresses.

Web Reputation Scores are associated with an action to take on a URL request. You can configure each 
policy group to correlate an action to a particular Web Reputation Score. The available actions depend 
on the policy group type that is assigned to the URL request:

When you configure web reputation settings in Access Policies, you can choose to configure the settings 
manually, or let AsyncOS for Web choose the best options using Adaptive Scanning. When Adaptive 
Scanning is enabled, you can enable or disable web reputation filtering in each Access Policy, but you 
cannot edit the Web Reputation Scores. 

Access Policies

You can choose to block, scan, or allow

Decryption Policies

You can choose to drop, decrypt, or pass through

Cisco IronPort Data Security Policies

You can choose to block or monitor

-10 to -6.0

Block

Bad site. The request is blocked, 
and no further malware scanning 
occurs.

URL downloads information without 
user permission.

Sudden spike in URL volume.

URL is a typo of a popular domain.

-5.9 to 5.9

Scan

Undetermined site. Request is 
passed to the DVS engine for 
further malware scanning. The 
DVS engine scans the request 
and server response content.

Recently created URL that has a 
dynamic IP address and contains 
downloadable content.

Network owner IP address that has a 
positive Web Reputation Score.

6.0 to 10.0

Allow

Good site. Request is allowed. 
No malware scanning required.

URL contains no downloadable 
content.

Reputable, high-volume domain 
with long history.

Domain present on several allow 
lists.

No links to URLs with poor 
reputations.