Cisco Cisco Web Security Appliance S170 사용자 가이드
Cisco IronPort AsyncOS 7.1 for Web User Guide
OL-23207-01
Chapter 8 Access Policies
Blocking Specific Applications and Protocols
Policy: Objects
You can block some Peer-to-Peer files directly, via the Access Policies: Objects:
Global Policy page.
Global Policy page.
On the Web Security Manager > Access Policies page, click on the value in the
Objects column for the desired policy.
Objects column for the desired policy.
In the Block Object Type section, check any boxes in the P2P Metafiles group.
You can add custom MIME (Multipurpose Internet Mail Extensions) types by
entering them in the Custom MIME Types field. For example, entering the
You can add custom MIME (Multipurpose Internet Mail Extensions) types by
entering them in the Custom MIME Types field. For example, entering the
application/x-zip
signature blocks ZIP archive files.
Blocking on Ports Other Than 80
If these applications are using ports other than 80, you may want to block access
to a specific server or block of IP addresses to which the client must connect. To
manage these applications on other ports, use the L4 Traffic Monitor. The L4
Traffic monitor allows you to restrict access on specific ports. However, the
restriction is global, so it will apply to all traffic on that port.
to a specific server or block of IP addresses to which the client must connect. To
manage these applications on other ports, use the L4 Traffic Monitor. The L4
Traffic monitor allows you to restrict access on specific ports. However, the
restriction is global, so it will apply to all traffic on that port.