Cisco Systems CL-28826-01 Security Camera User Manual


  Open as PDF
of 2616
 
18-17
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 18 Managing Firewall Web Filter Rules
Configuring Settings for Web Filter Servers
Field Reference
Table 18-8 Web Filter Page
Element Description
Web Filter Server Type The type of web filter server you are using:
None—You are not using web filter servers.
Websense—You use Websense servers.
Secure Computing SmartFilter/N2H2—You use Smartfilter
servers. If you select this option, you can specify the server port to
use for communication in the Port field.
Tip If you change this setting, you are prompted to remove the
existing list of servers from the table. Clicking Yes does not
clear the table. The prompt is to remind you that the list might
contain the wrong type of servers.
Web Filter Servers table The servers that the device should use for web filtering. Enter the
servers in priority order; the device uses the first one in the list until it
fails to respond, and moves to the next server in the list until it gets a
response.
If you select None for filter type, this list is ignored.
To add a server, click the Add Row button and fill in the Web Filter
Server Configuration Dialog Box, page 18-19.
To edit a server, select it and click the Edit Row button.
To delete a server, select it and click the Delete Row button.
IOS Specific Settings
Allow Traffic when Servers
Unreachable
Whether the device should allow web traffic if the web filter servers are
not responding. If you do not select this option, all web access is
prevented until the servers come back online.
If you allow web traffic when the servers are down, the web requests
are not filtered and access to all web servers is allowed.
Enable Alerts Whether to generate stateful packet inspection alert messages on the
console.
Enable Audit Trail Whether audit trail messages are logged to the syslog server or router.
Enable Web Filter Server
Logging
Whether to send system messages to the URL filtering server for
logging. The device sends a log request immediately after the URL
lookup request. The log request contains the URL, hostname, source IP
address, and the destination IP address. The server records the log
request into its own log server so you can view this information as
necessary.
Cache Size The maximum number of destination IP addresses (and their
authorization status) that can be cached in the device. The default value
is 5000.
When the cache reaches 80% full, the device starts removing older
inactive entries.