Netskope Help

Web Configuration

Netskope Secure Web Gateway provides these configuration options.

WebConfiguration.png
Dynamic Classification

Dynamic classification looks at the textual contents of a page and dynamically determines the category for the uncategorized URLs. This feature is turned off by default.

After a page has been dynamically categorized, the classification applies to all of your tenant instances. The page classification to a category expires every 12 hours so that if any changes occur to the page, the content is re-evaluated so the chosen category matches the current page content.

To use dynamic page classification:

  1. Click Settings > Security Cloud Platform > Configuration and go to the Dynamic Classification section.

    DynamicClassPage.jpg
  2. Click Edit to turn this feature on or off. To use this feature, change the toggle to Enable and then click Save.

    Uncategorized URLs that are encountered during a users web browsing session will be dynamically classified into predefined categories.

    DynamicClassEnabled.jpg
  3. Click Policies > Profile > Web > URL Lookup to search for predefined and Custom Categories, plus report miscategorization.

    DynamicClassCategory.jpg

    If the URL is miscategorized, use Custom Categories to define a custom URL category or Report Miscategorization.

Safe Search

To block porn and other explicit content in image format that violates your corporate policy, use the Safe Search feature.

To use safe search:

  1. Click Settings > Security Cloud Platform > Configuration and go to the Safe Search section.

    SafeSearch.png
  2. Click Edit to turn this feature on or off. To use this feature, change the toggle to Enable and then click Save.

    SafeSearchEdit.png

    Inappropriate URLs that are encountered during a users web browsing session will be blocked.

Dynamic Trusted Store

To use trusted store certificates:

  1. Click Settings > Security Cloud Platform > Configuration and go to the Dynamic Trusted Store section.

    DynamicTrustedStoreEdit.png
  2. Click Edit to turn this feature on or off. To use this feature, change the toggle to Enable and then click Save.

    DynamicTrustedStore.png

    Inappropriate URLs that are encountered during a users web browsing session will be blocked.

X-Forwarded-For Header

An X-Forwarded-For header is used to identify the originating IP address of a user connecting to a web server through an HTTP proxy. Without the X-Forwarded-For header, the proxy server will be identified as the originating IP address. Use this feature to trust IP addresses contained in the X-Forwarded-For header.

Note

For security, this feature is not supported for remote users when using explicit proxy steering methods.

To use X-Forwarded-For Header:

  1. Click Settings > Security Cloud Platform > Configuration and go to the X-Forwarded-For Header section.

    XFFheaderEdit.png
  2. Click Edit to turn this feature on or off. To use this feature, change the toggle to Trust and then click Save.

    XFFheader.png