Cisco Cisco Web Security Appliance S370 사용자 가이드
20-34
Cisco AsyncOS for Web User Guide
Chapter 20 Monitor System Activity Through Logs
Log File Fields and Tags
The following table describes the ACL decision tag values.
ACL Decision Tag
Description
ALLOW_ADMIN_ERROR_PAGE
The Web Proxy allowed the transaction to an notification
page and to any logo used on that page.
page and to any logo used on that page.
ALLOW_CUSTOMCAT
The Web Proxy allowed the transaction based on custom
URL category filtering settings for the Access Policy group.
URL category filtering settings for the Access Policy group.
ALLOW_WBRS
The Web Proxy allowed the transaction based on the Web
Reputation filter settings for the Access Policy group.
Reputation filter settings for the Access Policy group.
BLOCK_ADMIN
The Web Proxy blocked the transaction based on some
default settings for the Access Policy group.
default settings for the Access Policy group.
BLOCK_ADMIN_CONNECT
The Web Proxy blocked the transaction based on the TCP
port of the destination as defined in the HTTP CONNECT
Ports setting for the Access Policy group.
port of the destination as defined in the HTTP CONNECT
Ports setting for the Access Policy group.
BLOCK_ADMIN_CUSTOM_USER_AGENT
The Web Proxy blocked the transaction based on the user
agent as defined in the Block Custom User Agents setting
for the Access Policy group.
agent as defined in the Block Custom User Agents setting
for the Access Policy group.
BLOCK_ADMIN_IDS
The Web Proxy blocked the transaction based on the MIME
type of the request body content as defined in the Data
Security Policy group.
type of the request body content as defined in the Data
Security Policy group.
BLOCK_ADMIN_FILE_TYPE
The Web Proxy blocked the transaction based on the file
type as defined in the Access Policy group.
type as defined in the Access Policy group.
BLOCK_ADMIN_PROTOCOL
The Web Proxy blocked the transaction based on the
protocol as defined in the Block Protocols setting for the
Access Policy group.
protocol as defined in the Block Protocols setting for the
Access Policy group.
BLOCK_ADMIN_SIZE
The Web Proxy blocked the transaction based on the size of
the response as defined in the Object Size settings for the
Access Policy group.
the response as defined in the Object Size settings for the
Access Policy group.
BLOCK_ADMIN_SIZE_IDS
The Web Proxy blocked the transaction based on the size of
the request body content as defined in the Data Security
Policy group.
the request body content as defined in the Data Security
Policy group.
BLOCK_AMP_RESP
The Web Proxy blocked the response based on the
Advanced Malware Protection settings for the Access
Policy group.
Advanced Malware Protection settings for the Access
Policy group.
BLOCK_AMW_REQ
The Web Proxy blocked the request based on the
Anti-Malware settings for the Outbound Malware Scanning
Policy group. The request body produced a positive
malware verdict.
Anti-Malware settings for the Outbound Malware Scanning
Policy group. The request body produced a positive
malware verdict.
BLOCK_AMW_RESP
The Web Proxy blocked the response based on the
Anti-Malware settings for the Access Policy group.
Anti-Malware settings for the Access Policy group.
BLOCK_AMW_REQ_URL
The Web Proxy suspects the URL in the HTTP request
might not be safe, so it blocked the transaction at request
time based on the Anti-Malware settings for the Access
Policy group.
might not be safe, so it blocked the transaction at request
time based on the Anti-Malware settings for the Access
Policy group.
BLOCK_AVC
The Web Proxy blocked the transaction based on the
configured Application settings for the Access Policy
group.
configured Application settings for the Access Policy
group.