Cisco Cisco Web Security Appliance S190 사용자 가이드
18-5
Cisco IronPort AsyncOS 7.0 for Web User Guide
OL-23079-01
Chapter 18 Web Reputation Filters
Configuring Web Reputation Scores
For example, by default, URLs in an HTTP request that are assigned a Web
Reputation Score of +7 are allowed and require no further scanning. However, a
weaker score for an HTTP request, such as +3, is automatically forwarded to the
IronPort DVS engine where it is scanned for malware. Any URL in an HTTP
request that has a very poor reputation is blocked.
Reputation Score of +7 are allowed and require no further scanning. However, a
weaker score for an HTTP request, such as +3, is automatically forwarded to the
IronPort DVS engine where it is scanned for malware. Any URL in an HTTP
request that has a very poor reputation is blocked.
Web Reputation in Decryption Policies
describes the default Web Reputation Scores for Access Policies.
Table 18-2
Default Web Reputation Scores for Decryption Policies
Score
Action
Description
-10 to -9.0
Drop
Bad site. The request is dropped with no notice sent
to the end user.
to the end user.
Use this setting with caution.
-8.9 to 5.9
Decrypt
Undetermined site. Request is allowed, but the
connection is decrypted and the decrypted traffic is
applied to Access Policies.
connection is decrypted and the decrypted traffic is
applied to Access Policies.
For more information about how the appliance
decrypts HTTPS traffic, see
decrypts HTTPS traffic, see
6.0 to 10.0
Pass through
Good site. Request is passed through with no
inspection or decryption.
inspection or decryption.
Configuring Web Reputation Scores
When you install and set up the Web Security appliance, it has default settings for
Web Reputation Scores. However, you can modify threshold settings for web
reputation scoring to fit your organization’s needs.
Web Reputation Scores. However, you can modify threshold settings for web
reputation scoring to fit your organization’s needs.
You configure the web reputation filter settings for each policy group.