18-15
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter18 Managing Firewall Web Filter Rules
Configuring Settings for Web Filter Servers
Field Reference
Configuring Settings for Web Filter Servers
Use the Web Filter settings policy to configure the web filter servers and other settings to use with your
web filter rules policy. You can use Websense or Smartfilter (N2H2) filtering servers, or no external
servers (for IOS devices).
You must install and configure the web filter servers as directed by the documentation for the server
before configuring and deploying this policy. Security Manager cannot confirm that the servers exist or
that they are configured correctly.
Tip These settings work only with the web filter rules policy. The web servers you configure here are not
used with zone based firewall rules policies that configure web content filtering.
Related Topics
Understanding Web Filter Rules, page18-1
Configuring Web Filter Rules for ASA, PIX, and FWSM Devices, page 18-2
Configuring Web Filter Rules for IOS Devices, page18-10
Step 1 Do one of the following to open the Web Filter Settings Page, page 18-16:
(Device view) Select Firewall > Settings > Web Filter from the Policy selector.
(Policy view) Select Firewall > Settings > Web Filter from the Policy Type selector. Select an
existing policy or create a new one.
Step 2 Select the type of web filtering server you use in the Web Filter Server Type field, and then add the
servers to the table of web filtering servers. If you have more than one server, add them in priority order;
the first server in the list is the primary server.
To add a server, click the Add Row button and fill in the Web Filter Server Configuration Dialog
Box, page 18-19.
To edit a server, select it and click the Edit Row button.
To delete a server, select it and click the Delete Row button.
Step 3 The bottom half of the settings policy includes device-specific options that you can also configure. For
specific information on each setting, see Web Filter Settings Page, page18-16. The following is an
overview of the settings:
Table18-7 IOS Web Filter Exclusive Domain Name Dialog Box
Element Description
Traffic Whether you want to permit access to the listed web sites or deny
access to them.
Domain Name The domain names or host IP addresses of web sites that you are
permitting or denying. Separate multiple entries with commas.
For domain names, you can enter a full or partial name. For example,
cisco.com covers all web servers on the cisco.com domain, whereas
www.cisco.com specifies only the www web server.