Home  Prev  cOS Core 15.00.01 CLI Reference Guide  Next

3.154. WebProfile

Description

A Web Profile can be used by one or many IP Policies which has its service object configured with HTTP or HTTPS as protocol.

Properties

Name
Specifies a symbolic name for the Profile. (Identifier)
HTTPBanners
Specifies web page to present when access to a site is denied. (Default: Default)
AllowProtocolUpgrade
Allow the connection to be upgraded to another protocol e.g. a WebSocket. A protocol upgrade will disable further content inspection for the upgraded connection. (Default: Yes)
WCF
Use Web Content Filtering to monitor and/or deny access to restricted web sites based on a simple content category system. (Default: No)
WCFAuditMode
Use audit mode to allow, but still log, access to restricted sites. (Default: No)
WCFCategories
Specifies restricted web content categories. (Optional; Default: ADULT_CONTENT,BOTNETS, CHILD_ABUSE_MATERIAL,CRIME_TERRORISM, EMBEDDED_THREATS,GOVERNMENT_BLOCKING_LIST, HACKING,KEYLOGGERS,MALICIOUS,NUDITY, PHISHING:FRAUDS,SPAM_URLS,SPYWARE, SUSPICIOUS, VIOLENCE_UNDESIRABLE)
WCFNonManagedAction
Action to take for content that has not been classified. (Default: Allow)
WCFAllowOverride
Allows users to override the filter and gain access to blocked sites, with a warning that their actions will be logged. (Default: No)
WCFOverrideTimeToLive
Specifies how many seconds that a successful override remains in effect before the restricted site notice page reappears. (Default: 300)
WCFOverrideUpdateOnAccess
Reset the override timer on activity. (Default: Yes)
WCFAllowReclassification
Allows users to suggest new categories for blocked sites. This should under normal circumstances NEVER be enabled on profiles that affect end-users as it can be abused greatly. (Default: No)
HTTPSBlockPages
Present web page when access to a site is denied over a HTTPS connection. (Default: No)
RootCertificate
Selects the CA to use when signing HTTPS Block pages.
HTTPSCertGenLimit
The maximum number of certificates that can be generated per second. TLS alerts will be served to users if the limit is exceeded. (Default: 20)
FailModeBehavior
Standard behaviour on errors related to Web Profile features e.g. WCF. (Default: Allow)
UserAgentMode
Controls whether the user-agent filter should allow or deny the configured user-agents strings. (Default: DenySelected)
Attribute
Special Attribute of the current object. (Optional)
Comments
Text describing the current object. (Optional)

3.154.1. URLFilterPolicy_URL

Description

The URL filter is used for whitelisting URLs to bypass threat prevention mechanisms or to deny access to sites using the blacklist action. The redirect action allows HTTP requests to be redirected to alternative HTTP(S) destinations. The URL filter allows full match and wildcards filters.

Properties

Action
Whitelist, Blacklist or Redirect the matching URL filter. (Default: Blacklist)
URL
Specifies the URL to blacklist, whitelist or redirect.
RedirectTo
Specifies the URL to redirect requests to. Must be begin with 'http://' or 'https://'. (Default: http://)
Attribute
Special Attribute of the current object. (Optional)
Comments
Text describing the current object. (Optional)
[Note] Note
If no Index is specified when creating an instance of this type, the object will be placed last in the list and the Index will be equal to the length of the list.

3.154.2. UserAgentFilter

Description

The user-agent filter is used for controlling which applications and versions that are allowed to communicate through the system. The Web profile's 'User-Agent Filter Mode' controls whether the list should block or allow configured user-agents.

Properties

UserAgent
Specifies the user-agent string to allow or deny based on the configured User-Agent Filter Mode.
Attribute
Special Attribute of the current object. (Optional)
Comments
Text describing the current object. (Optional)
[Note] Note
If no Index is specified when creating an instance of this type, the object will be placed last in the list and the Index will be equal to the length of the list.
Home  Prev   Next