ICAP
Configuration Variable | Data Type | Description |
---|---|---|
proxy.config.icap.enabled | INT |
Default: 0 Enables (1) or disables (0) ICAP support with Data Security Suite (DSS). See Working With Web DLP. |
proxy.config.icap.ICAPUri | STRING |
Default: NULL The Uniform Resource Identifier for the ICAP service. A backup server can be specified in a comma-separated list. Obtain the identifier from your Forcepoint DLP administrator. Enter the URI in the following format: icap://hostname:port/path <hostname> is the IP address or hostname of the Protector appliance. <port> is 1344 by default. <path> is the path of the ICAP service on the host machine. For example: icap://ICAP_machine:1344/ opt/icap_services You do not need to specify the port if you are using the default ICAP port 1344. |
proxy.config.icap.FailOpen | INT |
Default: 1
|
proxy.config.icap. BlockHugeContent | INT |
Default: 0
|
proxy.config.icap. AnalyzeSecureContent | INT |
Default: 1
|
proxy.config.icap.AnalyzeFTP | INT |
Default: 1 When enabled (1), send native FTP upload file transfers to ICAP server for analysis. |
proxy.config.icap. ActiveTimeout | INT |
Default: 5 The read/response timeout in seconds. The activity is considered a failure if the timeout is exceeded. |
proxy.config.icap.RetryTime | INT |
Default: 5 The recovery interval, in seconds, to test whether a down server is back up. |
proxy.config.icap.LoadBalance | INT |
Default: 1 When to ICAP servers are specified:
|
proxy.config.icap. MaxConnection | INT |
Default: 5 When the ICAP server does not specify the maximum number of connections that the ICAP client can have, this value is used. Valid values are 1 - 100. |