Blue Coat Systems SGOS Version 5.2.2, Blue Coat Systems SG Appliance manual 100

Page 100

Volume 9: Managing the Blue Coat SG Appliance

parent class (bandwidth

A class with at least one child. The parent class must share its bandwidth with its

gain)

child classes in proportion to the minimum/maximum bandwidth values or priority

 

levels.

passive mode data

Data connections initiated by an FTP client to an FTP server.

connections (PASV)

 

pipelining

See object pipelining.

policies

Groups of rules that let you manage Web access specific to the needs of an enterprise.

 

Policies enhance SG appliance feature areas such as authentication and virus

 

scanning, and let you control end-user Web access in your existing infrastructure.

 

See also refresh policies.

policy-based bypass list

Used in policy. Allows a bypass based on the properties of the client, unlike static and

 

dynamic bypass lists, which allow traffic to bypass the appliance based on

 

destination IP address. See also bypass lists and dynamic bypass.

policy layer

A collection of rules created using Blue Coat CPL or with the VPM.

pragma: no cache (PNC)

A metatag in the header of a request that requires the appliance to forward a request

 

to the origin server. This allows clients to always obtain a fresh copy (of the request?).

proxy

Caches content, filters traffic, monitors Internet and intranet resource usage, blocks

 

specific Internet and intranet resources for individuals or groups, and enhances the

 

quality of Internet or intranet user experiences.

 

A proxy can also serve as an intermediary between a Web client and a Web server

 

and can require authentication to allow identity based policy and logging for the

 

client.

 

The rules used to authenticate a client are based on the policies you create on the SG

 

appliance, which can reference an existing security infrastructure—LDAP, RADIUS,

 

IWA, and the like.

Proxy Edition

SGOS 5 Proxy Edition.

proxy service

The proxy service defines the ports, as well as other attributes. that are used by the

 

proxies associated with the service.

proxy service (default)

The default proxy service is a service that intercepts all traffic not otherwise

 

intercepted by other listeners. It only has one listener whose action can be set to

 

bypass or intercept. No new listeners can be added to the default proxy service, and

 

the default listener and service cannot be deleted. Service attributes can be changed.

public key certificate

An electronic document that encapsulates the public key of the certificate sender,

 

identifies this sender, and aids the certificate receiver to verify the identity of the

 

certificate sender. A certificate is often considered valid if it has been digitally signed

 

by a well-known entity, which is called a Certificate Authority (such as VeriSign).

public virtual IP (VIP)

Maps multiple servers to one IP address and then propagates that information to the

 

public DNS servers. Typically, there is a public VIP known to the public Internet that

 

routes the packets internally to the private VIP. This enables you to “hide” your

 

servers from the Internet.

100

Page 99 Page 101
Image 100
Page 99 Page 101
Contents Blue Coat Systems SG Appliance Contact Information Contents Diagnostics Appendix a Glossary Index Volume 9 Managing the Blue Coat SG Appliance About Managing the SG Appliance Document ConventionsVolume 9 Managing the Blue Coat SG Appliance Using Director to Manage SG Systems Automatically Registering the SG Appliance with DirectorRelated CLI Commands for Director Registration Director Registration RequirementsRegistering the SG Appliance with Director To register the appliance with a DirectorSetting up Director and SG Appliance Communication To view the fingerprint of the keyMonitoring the System and Disks System SummaryTo delete a key To view the system summary statisticsViewing System Environment Sensors To view the system environment statisticsViewing Disk Status To view disk status or take a disk offlineSetting Up Event Logging and Notification Configuring Which Events to LogViewing SSL Accelerator Card Information To view SSL accelerator cardsSetting Event Log Size Related CLI Commands for Setting the Event Logging LevelRelated CLI Commands to Set the Event Log Size Enabling Event NotificationRelated CLI Commands to Enable Event Notifications To enable event notificationsSyslog Event Monitoring Viewing Event Log Configuration and Content Viewing the Event Log ConfigurationTo enable syslog monitoring Related CLI Commands to Enable Syslog MonitoringViewing the Event Log Contents Configuring Snmp To enable and configure SnmpRelated CLI Commands to Enable and Configure Snmp Enabling SnmpConfiguring Snmp Community Strings To set or change community stringsTo enable Snmp traps Configuring Snmp TrapsRelated CLI Commands for Enabling Snmp Traps Configuring Health Monitoring Health Monitoring RequirementsAbout the Health Monitoring Metric Types About Health MonitoringHealth Monitoring Example About License Expiration MetricsAbout the General Metrics About Health Monitoring NotificationAbout the Licensing Metrics About the Status Metrics Metric Threshold States and Corresponding ValuesChanging Threshold and Notification Properties To change the threshold and notification propertiesGetting a Quick View of the SG Appliance Health Viewing Health Monitoring Statistics To review the health monitoring statisticsTroubleshooting Related CLI Syntax to View Health Monitoring StatisticsVolume 9 Managing the Blue Coat SG Appliance Hardware and Software Restart Options Restarting the SG ApplianceTo restart the SG appliance Restoring System Defaults Restore-DefaultsFactory-Defaults Keep-ConsoleTo restore system defaults Clearing the DNS CacheClearing the Object Cache To clear the DNS cacheTroubleshooting Tip Clearing the Byte CacheClearing Trend Statistics Upgrading the SG ApplianceSG Appliance 5.x Version Upgrade To upgrade the SG applianceRelated CLI Syntax to Upgrade the Sgos Software Managing SG Appliance Systems To view Sgos system replacement optionsTo view details for an Sgos system version Example Session Setting the Default Boot SystemTo set the SG appliance to run on the next hardware restart Locking and Unlocking SG Appliance Systems Replacing an SG Appliance SystemTo lock a system To unlock a systemDeleting an SG Appliance System Disk ReinitializationMulti-Disk SG Appliances To delete a systemSingle-Disk SG Appliance Deleting Objects from the SG ApplianceTo delete a single object from the SG appliance To delete multiple objects from the SG applianceDiagnostics Sending Service Information Automatically Diagnostic Reporting Service InformationTo send service information automatically Related CLI Syntax to Send Service Information Managing the Bandwidth for Service InformationTo manage bandwidth for service information Configure Service Information Settings To send service informationSGOS#diagnostics service-info subcommands To create a new snapshot job Creating and Editing Snapshot JobsTo edit an existing snapshot job Following subcommands are available Related CLI Syntax to Edit an Existing Snapshot JobPcap File Name Format Packet Capturing the Job UtilityCommon Pcap Filter Expressions Configuring Packet Capturing Using Filter Expressions in the CLITo enable, stop, and download packet captures Diagnostics Related CLI Syntax to Define Packet Capturing Settings Viewing Current Packet Capture DataTo configure core image restart options Core Image Restart OptionsUploading Packet Capture Data To view current packet capture statisticsTo set daily heartbeats and/or Blue Coat monitoring Diagnostic Reporting HeartbeatsRelated CLI Syntax to Manage Heartbeats and Monitoring To configure and view CPU monitoring Diagnostic Reporting CPU MonitoringRelated CLI Syntax to Configure and View CPU Monitoring Volume 9 Managing the Blue Coat SG Appliance Statistics Selecting the Graph ScaleViewing Traffic Distribution Statistics Traffic MixRefreshing the Data Understanding Chart DataAbout Bypassed Bytes Viewing Bandwidth Usage or Gain About the Default Service StatisticsTo view bandwidth usage or gain statistics Viewing Traffic History Viewing Client Byte and Server Byte Traffic DistributionTo view client and server byte statistics Supported Proxy Types and Services Unsupported Proxy Types Viewing the ADN History Viewing Bandwidth Management StatisticsViewing Protocol Statistics To view client and server byte or bandwidth gain statisticsSSL History Viewing System Statistics Resources StatisticsViewing CPU Utilization To view CPU utilizationViewing Concurrent Users To view concurrent usersViewing Disk Use Statistics Viewing Memory Use StatisticsTo view disk use statistics To view memory use statisticsViewing Data Allocation Statistics in RAM and on Disk To view data allocation statisticsContents Statistics Event Logging Statistics To view the event logActive Sessions-Viewing Per-Connection Statistics Failover StatisticsTo view failover statistics Analyzing Proxied Sessions Viewing Proxied SessionsAbout the Proxied Sessions Statistics To view proxied sessionsProvided. See Viewing Sessions with Multiple Connections on Cache Hit Is unavailable if the content is non-cacheable or for Cifs About MMS Streaming Connections Using the Tool TipsViewing Sessions with Multiple Connections Understanding the Tree View MMSFiltering the Display What Is Not DisplayedAbout the Byte Totals Viewing Html and XML Views of Proxied Sessions Data Analyzing Bypassed Connections StatisticsAbout the Bypassed Connection Statistics Viewing Bypassed ConnectionsTo view bypassed connections 14. Filter Drop-Down List Viewing the Access Log Viewing Html and XML Views of Bypassed Connections DataViewing Health Monitoring Statistics Viewing Health Check StatisticsUsing the CLI show Command to View Statistics Statistics Volume 9 Managing the Blue Coat SG Appliance Appendix a Glossary URL Appendix a Glossary Drtr Icmp Volume 9 Managing the Blue Coat SG Appliance MACH5 MIB NTP 100 Network Tunneling tab 102 103 104 Index 106 Snmp 108
Top Page Image Contents