Руководство Пользователя для Cisco Cisco Web Security Appliance S160
6-22
Cisco IronPort AsyncOS 7.5 for Web User Guide
Chapter 6 Web Proxy Services
Advanced Proxy Configuration
For more information, see
•
FTPOVERHTTP. Configure the login name and password to use for anonymous FTP access and
whether or not to allow active mode for FTP transfers. Applies to FTP over HTTP transactions only.
whether or not to allow active mode for FTP transfers. Applies to FTP over HTTP transactions only.
For more information, see
.
•
HTTPS. Configure the logging style for URIs used in HTTPS transactions. You can choose to
record the full URI (“fulluri”) or just a portion of the URI with the query portion removed
(“stripquery”).
record the full URI (“fulluri”) or just a portion of the URI with the query portion removed
(“stripquery”).
For more information, see
.
•
Scanning. Configure how the DVS engine handles anti-malware scanning of web transactions.
For more information, see
.
•
Miscellaneous. Configure whether or not the Web Proxy should respond to health checks from
Layer 4 switches and whether or not the Web Proxy should perform dynamic adjustment of TCP
receive window sizes.
Layer 4 switches and whether or not the Web Proxy should perform dynamic adjustment of TCP
receive window sizes.
For more information, see
Each submenu command is discussed in the detail tables below. For the Default Value column, a string
means a name or list of characters such as “hello world.”
means a name or list of characters such as “hello world.”
Authentication Options
describes the authentication options for the
advancedproxyconfig
CLI command.
Table 6-4
advancedproxyconfig CLI Command—Authentication Options
Option
Valid
Values
Values
Default
Value
Value
Web Proxy
Must Restart
Must Restart
Description
When would you like to
forward authorization
request headers to a
parent proxy?
forward authorization
request headers to a
parent proxy?
Never,
Always,
Only if not
used by
the WSA
Always,
Only if not
used by
the WSA
Never
Yes
This setting determines whether
the Web Proxy includes the
“Proxy-Authorization” header to
upstream servers, including
proxies.
the Web Proxy includes the
“Proxy-Authorization” header to
upstream servers, including
proxies.
Enter the Proxy
Authorization Realm to
be displayed in the end
user authentication
dialog
Authorization Realm to
be displayed in the end
user authentication
dialog
String
“Cisco
IronPort
Web
Security
Appliance”
IronPort
Web
Security
Appliance”
No
Proxy Authorization Realm
displayed in the End User
Authentication dialog.
displayed in the End User
Authentication dialog.
Would you like to log the
username that appears in
the request URI?
username that appears in
the request URI?
Yes, No
(Boolean)
No
No
If enabled, ‘<username>:xxxxx’
is logged i.e the username is
displayed and the password is
represented as a string, ‘xxxxx’.
If disabled, both username and
password are stripped. Note that
the actual password is never
displayed regardless of the value
of this variable.
is logged i.e the username is
displayed and the password is
represented as a string, ‘xxxxx’.
If disabled, both username and
password are stripped. Note that
the actual password is never
displayed regardless of the value
of this variable.