Cisco Cisco ScanSafe Web Security

Cisco CWS

– AnyConnect Web Security Deployment Guide

Test

Deploy

Prepare

To summarize:

All 3 criteria must be true to apply the rule’s action to the web request

2. If any criteria are false the rule is ignored and the next rule down is evaluated.

3. The default rule, or rule of last resort, is an implicit allow.

Step 1:

Log on to the Cisco Cloud Web Security portal at

https://scancenter.scansafe.com/

Step 2:

From the web filtering tab, mouse over Management and select Filters.

Step 3:

Click Create Filter sub tab. The first thing that comes up is the categories.

*Note: To gain a better understanding of each category, select the Help tab to view the online portal
documentation. In the table of contents, select Web Filtering CategoriesCategories. You will find a
definition of each category and some examples to test.

Step 4:

Provide a friendly name in the filter name field.

Step 5:

Select categories that are typically deemed inappropriate for most organizations. Once

finished, click Save in the lower right corner.

Figure 2.51

Step 6:

Click on Domains/URls. This page is divided into two fields- Domain URLs and Network IPs.

This is where more granular configuration can be made for defining specific hosts, domains, or
networks.

Step 7:

In the domains URL field, enter a fully qualified URL such as cnn.com, host name such as

online.wsj.com, and a URL such as www.bbc.co.uk/news. Click Save.

*Note: No delineation characters or wildcard characters are needed. Also, no protocol prefix is
required.

Step 8:

If you require the ability to filter HTTP and HTTPS sites separately, check Enable

HTTP/HTTPS Web Split under Web FilteringManagementGlobal Settings.

Figure 2.52

Step 9:

Check Enable HTTP/HTTPS Split and click Save. Back at the filter, there is now two sets of

categories, HTTP and HTTPS. Because of the additional management overhead, only enable this
option if you absolutely require it.