18-8
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 18 Managing Firewall Web Filter Rules
Configuring Web Filter Rules for ASA, PIX, and FWSM Devices
Edit Web Filter Type Dialog Box
Use the Edit Web Filter Type dialog box to edit the type of filtering to be done by a web filter rule for
ASA, PIX, and FWSM devices.
Navigation Path
Right-click the Type cell in a web filter rule for ASA/PIX/FWSM (on the Web Fil ter Rule s Pa ge
(ASA/PIX/FWSM), page 18-3) and select Edit Web Filter Type. You can edit the type for one row at a
time.
Field Reference
Long URL
(URL only)
How to handle URLs that are longer than the maximum allowed by the
filtering server: 4 KB for Websense, 3 KB for Smartfilter (N2H2).
Many times, long URLs are due to parameter lists, and you can use the
Truncate CGI request by removing CGI parameters option to
handle those URLs. For other long URLs, select from the following
options:
Drop—Drop the long URL request.
Truncate—Truncate the URL request to only the hostname or IP
address portion of the URL.
Deny—Deny the URL request.
Category The category assigned to the rule. Categories help you organize and
identify rules and objects. See Using Category Objects, page 6-12.
Description An optional description of the rule (up to 1024 characters).
Table18-2 Add and Edit PIX/ASA/FWSM Web Filter Rule Dialog Boxes (Continued)
Element Description
Table18-3 Edit Web Filter Type Dialog Box
Element Description
Filtering The type of rule you are defining:
Filter—The rule filters the identified type of traffic between source
and destination.
Filter Except—The rule creates an exemption to a filter rule. The
identified traffic between the source and destination is not filtered.