Cisco Cisco Web Security Appliance S170 사용자 가이드
W E B R E P U T A T I O N
C H A P T E R 1 1 : D A T A S E C U R I T Y A N D E X T E R N A L D L P P O L I C I E S
227
monitor or block content by category. You can also create custom URL categories and choose
to allow, monitor, or block traffic for a website in the custom category.
to allow, monitor, or block traffic for a website in the custom category.
For more information about working with URL categories, see “Configuring URL Filters for
Data Security Policy Groups” on page 277.
Data Security Policy Groups” on page 277.
Web Reputation
The Web Reputation setting inherits the global setting. To customize web reputation filtering
for a particular policy group, you can use the Web Reputation Settings pull-down menu to
customize web reputation score thresholds.
for a particular policy group, you can use the Web Reputation Settings pull-down menu to
customize web reputation score thresholds.
Only negative and zero values can be configured for web reputation threshold settings for
IronPort Data Security Policies. By definition, all positive scores are monitored.
IronPort Data Security Policies. By definition, all positive scores are monitored.
For more information about configuring web reputation scores, see “Configuring Web
Reputation Scores” on page 315.
Reputation Scores” on page 315.
Content Blocking
You can use the settings on the IronPort Data Security Policies > Content page to configure the
Web Proxy to block data uploads based on the following file characteristics:
Web Proxy to block data uploads based on the following file characteristics:
• File size. You can specify the maximum upload size allowed. All uploads with sizes equal
to or greater than the specified maximum are blocked. You can specify different maximum
file sizes for HTTP/HTTPS and native FTP requests.
file sizes for HTTP/HTTPS and native FTP requests.
When the upload request size is greater than both the maximum upload size and the
maximum scan size (configured in the “Object Scanning Limits” field on Security Services
> Anti-Malware page), the upload request is still blocked, but the entry in the data security
logs does not record the file name and content type. The entry in the access logs is
unchanged.
maximum scan size (configured in the “Object Scanning Limits” field on Security Services
> Anti-Malware page), the upload request is still blocked, but the entry in the data security
logs does not record the file name and content type. The entry in the access logs is
unchanged.
• File type. You can block predefined file types or custom MIME types you enter. When you
block a predefined file type, you can block all files of that type or files greater than a
specified size. When you block a file type by size, the maximum file size you can specify
is the same as the value for the “Object Scanning Limits” field on Security Services >
Anti-Malware page. By default, that value is 32 MB.
specified size. When you block a file type by size, the maximum file size you can specify
is the same as the value for the “Object Scanning Limits” field on Security Services >
Anti-Malware page. By default, that value is 32 MB.
IronPort Data Security Filters do not inspect the contents of archived files when blocking
by file type. Archived files can be blocked by its file type or file name, not according to its
contents.
by file type. Archived files can be blocked by its file type or file name, not according to its
contents.
Note — For some groups of MIME types, blocking one type blocks all MIME types in the
group. For example, blocking application/x-java-applet blocks all java MIME types, such
as application/java and application/javascript.
group. For example, blocking application/x-java-applet blocks all java MIME types, such
as application/java and application/javascript.
• File name. You can block files with specified names. You can use text as a literal string or
a regular expression for specifying file names to block. For more information on using
regular expressions, see “Regular Expressions” on page 290.
regular expressions, see “Regular Expressions” on page 290.