Content Policy Language
Last modified by Valdis Vītoliņš on 2018/01/15 21:44
Content Policy Language
Advanced Services - TCP Tunnel
Forward to a forwarding host "my_ssh" whatever traffic comes to 192.168.1.220:22; useful to allow only a few hosts to be reachable via SSH.
; Installed Policy — compiled at: Sun, 28 Sep 2008 20:19:31 UTC
; Default proxy policy is ALLOW
; Policy Rules
<Forward>
condition=__Proxy_192_168_1_220__22 forward("my_ssh") forward.fail_open(no)
; Definitions
define condition __Proxy_192_168_1_220__22
proxy.port=22 proxy.address=192.168.1.220
end
; Default proxy policy is ALLOW
; Policy Rules
<Forward>
condition=__Proxy_192_168_1_220__22 forward("my_ssh") forward.fail_open(no)
; Definitions
define condition __Proxy_192_168_1_220__22
proxy.port=22 proxy.address=192.168.1.220
end
Configuring the Central Policy File
See sample policy at https://download.bluecoat.com/release/SG4/files/CentralPolicy.txt:
; Default proxy policy is ALLOW
; Policy Rules
<Cache Blue_Coat_Central_Policy>
[url]
//www/ DENY
[Rule]
DENY url.regex="\.ida\?.{230}"
DENY url.regex="/system32/cmd\.exe\?|/root\.exe\?|(/readme\.eml$)"
url.regex="/cgi-bin/video" cache(no) pipeline(no)
; Policy Rules
<Cache Blue_Coat_Central_Policy>
[url]
//www/ DENY
[Rule]
DENY url.regex="\.ida\?.{230}"
DENY url.regex="/system32/cmd\.exe\?|/root\.exe\?|(/readme\.eml$)"
url.regex="/cgi-bin/video" cache(no) pipeline(no)
Bandwidth Management
Limit news bandwidth (incoming from the server) at 20Kb/s:
; Installed Policy — compiled at: Mon, 29 Sep 2008 17:18:30 UTC
; Default proxy policy is ALLOW
; Policy Rules
<Proxy>
category=News/Media limit_bandwidth.server.inbound(News)
; Definitions
define condition RequestURLCategory1
category=News/Media
end
; Default proxy policy is ALLOW
; Policy Rules
<Proxy>
category=News/Media limit_bandwidth.server.inbound(News)
; Definitions
define condition RequestURLCategory1
category=News/Media
end