Content Policy Language

Pēdējais mainījis Administrator 2011-06-06 17:16

Content Policy Language

Advanced Services - TCP Tunnel

Forward to a forwarding host "my_ssh" whatever traffic comes to 192.168.1.220:22; useful to allow only a few hosts to be reachable via SSH.

; Installed Policy -- compiled at: Sun, 28 Sep 2008 20:19:31 UTC
;     Default proxy policy is ALLOW
; Policy Rules
<Forward>
    condition=__Proxy_192_168_1_220__22 forward("my_ssh") forward.fail_open(no) 
; Definitions
define condition __Proxy_192_168_1_220__22
    proxy.port=22 proxy.address=192.168.1.220 
end

Configuring the Central Policy File

See sample policy at https://download.bluecoat.com/release/SG4/files/CentralPolicy.txt:

;     Default proxy policy is ALLOW
; Policy Rules
<Cache Blue_Coat_Central_Policy>
  [url]
    //www/ DENY 
  [Rule]
    DENY url.regex="\.ida\?.{230}" 
    DENY url.regex="/system32/cmd\.exe\?|/root\.exe\?|(/readme\.eml$)" 
    url.regex="/cgi-bin/video" cache(no) pipeline(no)

Bandwidth Management

Limit news bandwidth (incoming from the server) at 20Kb/s:

; Installed Policy -- compiled at: Mon, 29 Sep 2008 17:18:30 UTC
;     Default proxy policy is ALLOW
; Policy Rules
<Proxy>
    category=News/Media limit_bandwidth.server.inbound(News) 
; Definitions
define condition RequestURLCategory1
    category=News/Media 
end

Tagi:
Izveidojis Kalvis Apsītis 2008-09-28 23:32
    
This wiki is licensed under a Creative Commons 2.0 license
XWiki Enterprise 6.4 - Documentation