Configuring the HTTP Proxy
110
Firebox X Edge e-Series
Content types
When a web server sends HTTP traffic, it usually adds a MIME type, or content type, to the packet
header that shows what kind of content is in the packet. The format of a MIME type is
type/subtype
.
For example, if you wanted to allow JPEG images, you would add
image/jpg
. You can also use the
asterisk (*) as a wildcard. To allow any image format, you add
image/*
to the list.
1
Select the
HTTP Content
tab.
2
Select the
Allow only safe content types
check box if you want to limit content types allowed
through the proxy. A list of common MIME types is included by default.
3
To add common content types to the list, select the MIME type in the
Predefined content type
column and click the
<<
button.
4
To add other content types, enter them in the empty field and click
Add
.
For a list of current, registered MIME types, go to
www.iana.org/assignments/media-types
5
To remove a content type, select it from the list and click
Remove
.
URL paths
A Uniform Resource Locator (URL) identifies a resource on a remote server and gives the network loca-
tion on that server. The URL path is the string of information that comes after the top level domain
name. You can use the HTTP proxy to block web sites that contain specified text in the URL path. For
example, if you want to block all pages that have the host name www.test.com, type the pattern
www.test.com*
. If you want to block all paths that contain the word “sex” for all domains, type
*sex*
.
If you want to block executable files, type
*.exe
.
1
Select the
Deny unsafe path patterns
check box if you want to use URL path rules to filter the
content of the host, path, and query-string components of a URL.
2
To add a new path pattern, enter the path and click
Add
.
3
To remove a path pattern, select the pattern and click
Remove
.
Cookies
HTTP cookies are small files of alphanumeric text put by web servers on web clients. Cookies monitor
the page a web client is on to enable the web server to send more pages in the correct sequence. Web
servers also use cookies to collect information about an end user. Many web sites use cookies for
authentication and other legitimate functions and cannot operate correctly without cookies.
You can configure the HTTP proxy with a list of web sites. Any cookies from these web sites are then
denied by the HTTP proxy. If you want to deny cookies from all subdomains on a web site, use the wild-
card symbol (*) before and after the domain. For example,
*google.com*
blocks all subdomains of
google.com, such as images.google.com and mail.google.com.
1
Select the
Deny Cookies from these sites
check box if you want to block cookies from a
particular site.
2
Enter the web site domain name or partial domain with wildcards in the field and click
Add
.
3
Click
Submit
.
Summary of Contents for Firebox X20E
Page 20: ...The Firebox X Edge and Your Network 8 Firebox X Edge e Series...
Page 32: ...Using the Quick Setup Wizard 20 Firebox X Edge e Series...
Page 64: ...Viewing the Configuration File 52 Firebox X Edge e Series...
Page 92: ...Configuring BIDS 80 Firebox X Edge e Series...
Page 102: ...Configuring the Wireless Card on Your Computer 90 Firebox X Edge e Series...
Page 114: ...Configuring Policies for the Optional Network 102 Firebox X Edge e Series...
Page 138: ...Using Additional Services for Proxies 126 Firebox X Edge e Series...
Page 158: ...Working with Firewall NAT 146 Firebox X Edge e Series...
Page 166: ...Using Certificates on the Firebox X Edge 154 Firebox X Edge e Series...
Page 208: ...Updating Gateway AV IPS 196 Firebox X Edge e Series...
Page 220: ...Frequently Asked Questions 208 Firebox X Edge e Series...
Page 302: ...Limited Hardware Warranty 290 Firebox X Edge e Series...
Page 310: ...298 Firebox X Edge e Series...