Manuals
/
Blue Coat Systems
/
Computer Equipment
/
Time Clock
Blue Coat Systems
Proxy SG
manual
ProxySG Content Policy Language Guide Xviii
Models:
Proxy SG
1
18
314
314
Download
314 pages
28.21 Kb
15
16
17
18
19
20
21
22
Troubleshooting
Install
Default value is no Where
Administrator Transactions
User.x509.issuer=
Consoleaccess=
Authorization
Request.filterservice
Im.chatroom.voiceenabled=
Writing Policy Using CPL
Page 18
Image 18
Proxy
SG
Content Policy Language Guide
xviii
Page 17
Page 19
Page 18
Image 18
Page 17
Page 19
Contents
Blue Coat SystemsTM ProxySG Content Policy Language Guide
Info@bluecoat.com
Third Party Copyright Notices
ProxySG Content Policy Language Guide
Copyrights
ProxySG Content Policy Language Guide
Pcre
Tcpip
Preface Introducing the Content Policy Language
About the Document Organization
Supported Browsers
Related Blue Coat Documentation
Document Conventions
Contents
Condition Reference
Xiii
Property Reference
Contents
Appendix a Glossary
Appendix F Upgrading from CacheOS Index
ProxySG Content Policy Language Guide Xviii
Concepts
Transactions
Policy Model
Comments
CPL Language Basics
Role of CPL
Rules
CPL triggers have the form triggername=patternexpression
Quoting
Layers
Sections
Definitions
Referential Integrity
Named Definitions
Writing Policy Using CPL
Substitutions
Authentication and Denial
Installing Policy
CPL General Use Characters and Formatting
Troubleshooting Policy
Upgrade/Downgrade Issues
CPL Syntax Deprecations
Conditional Compilation
ProxySG Content Policy Language Guide
Administrator Transactions
Understanding Transactions and Timing
Proxy Transactions
Policy is examined before the requested object is fetched
Managing Content Policy Language When Policy is Evaluated
Cache Transactions
Forwarding Transactions
Timing
Admin Layers
Understanding Layers
Cache Layers
Exception Layers
Forward Layers
Proxy Layers
Layer Guards
Following layer would result in a similar error
Understanding Sections
Rule
Url.regex
Url
Url.domain
Serverurl.domain
Defining Policies
Section Guards
Blacklists and Whitelists
General Rules and Exceptions to a General Rule
Using Layer Ordering to Define Exceptions
Avoid Conflicting Actions
Best Practices
Condition Reference
Condition Syntax
Pattern Types
Layer Type Restrictions
Unavailable Triggers
Condition Reference
Global Restrictions
Acl=
Admin.access=
Examples
Attribute.name=
See Also
Authenticated=
Bitrate=
See Also
Category=
Client.address=
Client.protocol=
Condition=
Condition=conditionlabel
Properties action.actionlabel
Consoleaccess=
Contentadmin=
Contentmanagement
Date.utc=
Day=
Exception.id=
See Also
Ftp.method=
Group=
Examples
Hasattribute.name=
Example
See Also
Hasclient=
Hour=
See Also
Http.method=
Http.request.version=
Http.response.code=
Http.response.version=
Http.transparentauthentication=
Http.xmethod=
Im.buddyid=
Im.chatroom.conference=
Im.chatroom.id=
Im.chatroom.inviteonly=
Im.chatroom.type=
Im.chatroom.member=
Im.chatroom.voiceenabled=
Im.file.extension=
Im.file.name=
Im.file.path=
Im.file.size=
Im.message.opcode=
Im.message.route=
Im.message.size=
Im.message.text=
Im.message.type=
Im.method=
Im.userid=
Live=
Method=
Protocol Methods
105
Minute=
Month=
Protocol=
Proxy.address=
Proxy.card=
Proxy.port=
Realm=
113
Release.id=
Release.version=
Request.header.headername=
Request.header.headername.address=
Request.header.Referer.url=
Domainsuffixpattern
119
Conditions url=, serverurl=
Request.xheader.headername=
Request.xheader.headername.address=
Response.header.headername=
Where
Response.xheader.headername=
Serverurl=
Serverurl.address=ipaddresssubnetsubnetlabel
Applies to all non-administrator transactions
127
Socks=
Socks.accelerated=
Socks.method=
Socks.version=
Streaming.client=
Streaming.content=
Time=
135
Tunneled=
Url=
Url.address=ipaddresssubnetsubnetlabel
Accepted domain suffix patterns include the following
139
Exact
Url=http//example.com8080/index.html
142
143
User=
145
User.domain=
User.x509.issuer=
User.x509.serialNumber=
User.x509.subject=
Weekday=
Year=
ProxySG Content Policy Language Guide 152
Property Reference
Property Reference
Accesslog
Accessserver
Action
Advertisement
Allow
Allows the transaction to be served
Alwaysverify
Authenticate
161
Authenticate.force
Default value is no Where
Authenticate.mode
164
Authenticate.useurlcookie
Blockcategory
Bypasscache
Cache
169
Checkauthorization
Contentfilteroverride
Cookiesensitive
Deleteonabandonment
Deny
Deny.unauthorized
Direct
Dynamicbypass
Exception
Exception.autopad
Forcecache
Example See Also
Forcedeny
Forceexception
Forcepatiencepage
Forward
Forward.failopen
Ftp.serverconnection
Ftp.serverdata
Ftp.transport
Http.forcentlmforserverauth
Http.request.version
Http.response.version
Icp
Im.stripattachments
Integratenewhosts
Label
Log.rewrite.field-id
Log.suppress.field-id
Maxbitrate
Neverrefreshbeforeexpiry
Neverserveafterexpiry
Patiencepage
Pipeline
Prefetch
Reflectip
Reflectvip
Refresh
RemoveIMSfromGET
RemovePNCfromGET
RemovereloadfromIEGET
Request.filterservice
211
Request.icapservice
Response.icapservice
Service
Socks.accelerate
Socks.authenticate
Socks.authenticate.force
Socksgateway
Socksgateway.failopen
Streaming.transport
Terminateconnection
Trace.destination
Trace.request
Trace.rules
Ttl
Uasensitive
Argument Syntax
Action Reference
Append
Delete
Deletematching
Im.alert
Logmessage
Notifyemail
Notifysnmp
Redirect
Replace
Rewrite
Https Limitation
238
239
Set
241
Transform
Properties action
Viruscheck
Definition Reference
Definition Names
Define action
Definitions transform activecontent, transform urlrewrite
Define activecontent
Actions transform
Define category
Conditions category= Properties action
Define condition
Conditions category=, condition=
Define domain
Define javascript
256
Define prefix condition
Define serverurl.domain condition
259
Define subnet
Define url condition
End Proxy condition=allowed allow
Define url.domain condition
264
Define urlrewrite
Definitions define action, define activecontent
Restrict dns
Restrict rdns
Transform activecontent
Transform urlrewrite
Appendix a Glossary
272
273
ProxySG Content Policy Language Guide 274
Appendix B Testing and Troubleshooting
Enabling Rule Tracing
Using Trace Information to Improve Policies
Enabling Request Tracing
Sample Policy
Match
279
Rule action.setheader2yes
Appendix C Recognized Http Headers
Header Field Request/Response Form Allowed Actions
Appendix D CPL Substitutions
Category connection
Category im
Category specialtoken
Category status
288
Category streaming
Category url
291
292
Category user
294
295
Category siresponseheader
297
298
Filter File Overview
Filter File Structure
Filter-Part Components
Filters
Conditions
ALL Statements
Access-Control List ACL Definitions
Domain-Suffix Sections
Defaultfilterproperties Statement
Action-Part Components
Evaluation Order
Appendix F Upgrading from CacheOS
Converting Filter-Style Files to CPL Syntax
Index
ProxySG Configuration and Management Guide
Index
312
SeeDefault Parra Font policy tracing rules, overview
314
Top
Page
Image
Contents