Configuring Content Security Settings
Use the Edit Content Security Settings page to configure Content Security antispam, antivirus, and Web filtering settings for a tenant.
These settings are applicable to all the sites belonging to a tenant. The settings are pushed to all those sites where a firewall policy intent with Content Security enabled is applicable.
To configure Content Security settings:
Setting |
Guideline |
|---|---|
Antispam Settings |
|
Address Allowlist |
Select the URL pattern to be used as the antispam allowlist. Alternatively, click Create a New Pattern to create a new URL pattern to use as a allowlist. The Create URL Patterns page appears. For more information, see Creating URL Patterns for an explanation of the fields on this page. |
Address Blocklist |
Select the URL pattern to be used as the antispam blocklist. Alternatively, click Create a New Pattern to create a new URL pattern to use as a blocklist. |
Antivirus Settings |
|
MIME Allowlist |
Enter one or more MIME types (separated by commas) to exclude from antivirus scanning. |
Exception MIME Allowlist |
Enter one or more MIME types (separated by commas) that are to be excluded from the list of MIME types specified as part of the MIME allowlist. This list is a subset of the MIME types that you specified in the MIME allowlist. For example, if you specify video/ in the allowlist and video/x-shockwave-flash in the exception allowlist, all objects of MIME type video/ except MIME type video/x-shockwave-flash are excluded from antivirus scanning. |
URL Allowlist |
Select the list of URLs the antivirus settings can allow. |
Web Filtering Settings |
|
URL Allowlist |
Select the list of URLs the Web filtering settings can allow; these URLs are excluded from Web filtering. |
URL Blocklist |
Select the list of URLs the Web filtering settings can block; these URLs are blocked from Web access. |