Secure Mobile Access 12.4 Administration Guide

Configuring Web Resource Filtering

Web resource filtering enables extra processing for defined IP addresses and ports to detect HTTP traffic. When HTTP requests are found, policy and single sign-on logic are applied to the Web server connections.

Web resource filtering allows you to enforce the same URL-based rules in tunnel sessions that administrators define for ExtraWeb. It also allows you to leverage single sign-on functionality when accessing Web applications.

When Web resource filtering is not enabled, the available policies for Web access and tunnel access are not equivalent. The Web access cases can evaluate URL policy for all translated access and HTTP access for Web proxy and port map clients. For users connected via a tunnel, the IP layer redirection only permits policies based on IP address. In deployments where multiple Web addresses or namespaces are hosted on a single Web server, all Web content is reachable at a single IP address or pool of addresses. Basing policy on just the IP layer does not permit the administrator to enforce policy distinctions between the multiple namespaces. Enabling Web resource filtering allows policies to use URL-based rules in addition to IP-based rules for tunnel sessions.

To configure Web resource filtering

  1. In the AMC, navigate to System Configuration > Services.

  2. In the Access Services section, under Network tunnel service area, Configure. The Network Tunnel Service page displays.

  3. In the Web Resource Filtering section, click Edit. The Tunnel Web Policy page displays.

  4. Select the Enable web resource filtering checkbox to cause the tunnel service to check all client traffic at ports that may contain Web network traffic.
  5. Click Save.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.