ProSecure Unified Threat Management (UTM) Appliance Reference Manual
Content Filtering and Optimizing Scans 6-19
v1.0, January 2010
Configuring Web and Services Protection
The UTM lets you configure the following settings to protect the network’s Internet and Web
services communication:
• The Web protocols, instant messaging services, and peer-to-peer services that are scanned for
malware threats.
• Actions that are taken when infected Web files or objects are detected.
• The maximum file sizes that are scanned.
• Web objects that are blocked.
• Web categories, keywords, and file types that are filtered to block objectionable or high-risk
content.
• Domains and URLs that are blocked for objectionable or high-risk content.
• Customer notifications and e-mail alerts that are sent when events are detected.
• Schedules that determine when content filtering is active.
Customizing Web Protocol Scan Settings and Services
You can specify the Web protocols (HTTP, HTTPS, and FTP) that are scanned for malware threats
and the instant messaging and peer-to-peer applications that are allowed or blocked.
Scanning all protocols enhances network security, but might affect the performance of the UTM.
For an optimum balance between security and performance, only enable scanning of the most
commonly used protocols on your network. For example, you can scan FTP and HTTP, but not
HTTPS (if this last protocol is not often used). For more information about performance, see
“Performance Management” on page 10-1.
To configure the Web protocols, ports, and applications to scan:
1. Select Application Security > Services from the menu. The Services screen displays (see
Table 6-7 on page 6-20).
Note: For information about e-mail protocols and ports, see “Customizing E-mail
Protocol Scan Settings” on page 6-4.