Белая книга для Cisco Cisco ScanSafe Web Security
Cisco CWS
– ASA 5500 Deployment Guide
10
Test
Deploy
Prepare
Figure 2.11
Step 5:
Create an object for
Figure 2.12
As before, in a real life scenario there may be additional destinations to be excluded from Cloud Web
Security filtering.
Security filtering.
Step 6:
Create a group that will include the object CISCO_FQDN and name it
DESTINATION_WHITELIST.
Because of our two ACL that forward HTTP and HTTPS requests to the Cloud Web Security Service,
an ACE should be created for each ACL that denies the particular traffic that matches the
DESTINATION_WHITELIST group.
an ACE should be created for each ACL that denies the particular traffic that matches the
DESTINATION_WHITELIST group.