--> WSA features are mainly divided into 3 main tasks:
1) Acceptable Usage Controls : URL Filtering, Application Visibility and Control, HTTPS Decryption
2) Malware Scanning: using L4 Traffic Monitor, Web Reputation Filters and Malware Scanning using supported engines.
3) Data Security Protection: DLP can be implemented using directly on cisco ironport or can be integrated with other DLP Solutions.
--> WSA configuration can be done by using CLI or GUI.
--> WSA Stores the configuration in XML Format.
--> one or more WSA can be managed by Content Security Management Appliances (SMA).
--> WSA GUI Access can be managed by using 8080 on HTTP Port and 8443 on HTTPS port.
--> Default credentials used by Ironport:
username: admin
password:ironport
--> WSA GUI is mainly divided into 5 sections:
1) Reporting : Custom and Predefined Reports of Web Traffic
2) Web Security Manager: For creating web policies
i) Identities: To differentiate between differnt group of users
ii) Access Policies: What Security inspections need to be applied on HTTP/HTTPS traffic using identities.
iii) Decryption Policies: Defines HTTPS traffic is decrypted or not using identities.
iv) SAAS Policies: Integration with vendors such as Google Apps, Salesforce.
v) Routing Policies: Defines the HTTP/HTTPS traffic need to be forwarded to other upstream proxy or not.
vi)Overall Bandwidth Limit: controls bandwidth for Web traffic
vii) Data Security Policies: Data Loss Prevention
Viii) Malware Scanning Policies: For Scanning Malwares
3) Network: Network Related configuration and Integration with LDAP/DLP Servers ( Configuring Interfaces, Transparent Redirection, Routes,DNS,Internal SMTP Relay, Authentication, Upstream Proxy, External DLP Servers)
4) Security Services: Enable/Disable Security Services such as webproxy,FTP Proxy,HTTPS Proxy and SOCKS Proxy,DLP,Malware and SAAS.
5) System Administartaion: Upgrades/Settings of WSA.
1) Acceptable Usage Controls : URL Filtering, Application Visibility and Control, HTTPS Decryption
2) Malware Scanning: using L4 Traffic Monitor, Web Reputation Filters and Malware Scanning using supported engines.
3) Data Security Protection: DLP can be implemented using directly on cisco ironport or can be integrated with other DLP Solutions.
--> WSA configuration can be done by using CLI or GUI.
--> WSA Stores the configuration in XML Format.
--> one or more WSA can be managed by Content Security Management Appliances (SMA).
--> WSA GUI Access can be managed by using 8080 on HTTP Port and 8443 on HTTPS port.
--> Default credentials used by Ironport:
username: admin
password:ironport
--> WSA GUI is mainly divided into 5 sections:
1) Reporting : Custom and Predefined Reports of Web Traffic
2) Web Security Manager: For creating web policies
i) Identities: To differentiate between differnt group of users
ii) Access Policies: What Security inspections need to be applied on HTTP/HTTPS traffic using identities.
iii) Decryption Policies: Defines HTTPS traffic is decrypted or not using identities.
iv) SAAS Policies: Integration with vendors such as Google Apps, Salesforce.
v) Routing Policies: Defines the HTTP/HTTPS traffic need to be forwarded to other upstream proxy or not.
vi)Overall Bandwidth Limit: controls bandwidth for Web traffic
vii) Data Security Policies: Data Loss Prevention
Viii) Malware Scanning Policies: For Scanning Malwares
3) Network: Network Related configuration and Integration with LDAP/DLP Servers ( Configuring Interfaces, Transparent Redirection, Routes,DNS,Internal SMTP Relay, Authentication, Upstream Proxy, External DLP Servers)
4) Security Services: Enable/Disable Security Services such as webproxy,FTP Proxy,HTTPS Proxy and SOCKS Proxy,DLP,Malware and SAAS.
5) System Administartaion: Upgrades/Settings of WSA.
0 comments:
Post a Comment