Configuring exceptions to Content Gateway analysis

Administrator Help | TRITON AP-WEB | Version 8.3.x

Related topics:

Configuring Content Gateway analysis

Configuring content categorization

Configuring content security

Configuring file analysis

Content Gateway outbound security analysis

Content Gateway advanced analysis options

Scanning exceptions are lists of trusted or untrusted sites (hostnames and URLs) that are never analyzed or always analyzed. The type of analysis to never or always perform is specified per hostname or URL, or group of hostnames and URLs.

You can also create a list of trusted client IP addresses whose content is never analyzed.

For an introduction to scanning options, see Content Gateway Analysis.

Use the Always Scan and Never Scan lists to refine the behavior of content categorization, tunneled protocol detection, security threats (content analysis and file analysis), and content stripping.

When Content Categorization, Content Security, or File Analysis options are On, sites on the Always Scan list are always analyzed, and sites on the Never Scan list are never analyzed (see Configuring Content Gateway analysis).

When the Tunneled Protocol Detection option is On or Aggressive analysis is selected, sites on the Never Scan list are never analyzed.

Use the Never Scan list with caution. If a site on the list is compromised, TRITON AP-WEB does not analyze the site and cannot detect the security problem.

Hostname/URL Exceptions

To add sites to the Always Scan or Never Scan lists:

Click the Add Hostname/URL button.

You can specify a site in several ways, and you can specify more than one hostname or URL at a time.

You can enter a simple hostname, for example, thissite.com. Be sure to enter both the hostname and the extension (thissite.com and thissite.net are distinct hosts).

Sites with multiple labels are supported. For example: www.bbc.co.uk

You can use the wild card "*" to match leading subdomains only.

For example: *.yahoo.com.

You can enter a complete or partial hostname or URL. The leading scheme "HTTPS://" is not required. An exact match is performed on the specified string.

For example: www.example.com/media/

Or: www.youtube.com/watch?v=

After entering a single or group of hostnames/URLs, select the scanning options that apply to all of the sites you have entered. You can select one or more options.

To apply different options to different sites, enter the names separately.

A site can appear in only 1 of the 2 lists. You cannot, for example, specify that the same site should never be analyzed for tunneled protocols and always analyzed for content categorization.

Click OK to add the entry.

To delete a site from a list, select the site and click Delete.

When you are finished, click OK to cache your changes. Changes are not implemented until you click Save and Deploy.