Support User Manuals

Cisco Systems CL-28826-01 Security Camera User Manual

Open as PDF

of 2616

18-17

User Guide for Cisco Security Manager 4.4

OL-28826-01

Chapter 18 Managing Firewall Web Filter Rules

Configuring Settings for Web Filter Servers

Field Reference

Table 18-8 Web Filter Page

Element Description

Web Filter Server Type The type of web filter server you are using:

• None—You are not using web filter servers.

• Websense—You use Websense servers.

• Secure Computing SmartFilter/N2H2—You use Smartfilter

servers. If you select this option, you can specify the server port to

use for communication in the Port field.

Tip If you change this setting, you are prompted to remove the

existing list of servers from the table. Clicking Yes does not

clear the table. The prompt is to remind you that the list might

contain the wrong type of servers.

Web Filter Servers table The servers that the device should use for web filtering. Enter the

servers in priority order; the device uses the first one in the list until it

fails to respond, and moves to the next server in the list until it gets a

response.

If you select None for filter type, this list is ignored.

• To add a server, click the Add Row button and fill in the Web Filter

Server Configuration Dialog Box, page 18-19.

• To edit a server, select it and click the Edit Row button.

• To delete a server, select it and click the Delete Row button.

IOS Specific Settings

Allow Traffic when Servers

Unreachable

Whether the device should allow web traffic if the web filter servers are

not responding. If you do not select this option, all web access is

prevented until the servers come back online.

If you allow web traffic when the servers are down, the web requests

are not filtered and access to all web servers is allowed.

Enable Alerts Whether to generate stateful packet inspection alert messages on the

console.

Enable Audit Trail Whether audit trail messages are logged to the syslog server or router.

Enable Web Filter Server

Logging

Whether to send system messages to the URL filtering server for

logging. The device sends a log request immediately after the URL

lookup request. The log request contains the URL, hostname, source IP

address, and the destination IP address. The server records the log

request into its own log server so you can view this information as

necessary.

Cache Size The maximum number of destination IP addresses (and their

authorization status) that can be cached in the device. The default value

is 5000.

When the cache reaches 80% full, the device starts removing older

inactive entries.

previous next