https://community.cisco.com/t5/web-security/handling-mis-classified-websites/m-p/1240315#M672 <HTML><HEAD></HEAD><BODY><P>Josh<BR /><BR />That worked great. Thanks!<BR /><BR />Richard</P></BODY></HTML> Fri, 06 Mar 2009 00:58:15 GMT roffill_ironport 2009-03-06T00:58:15Z https://community.cisco.com/t5/web-security/handling-mis-classified-websites/m-p/1240311#M668 <P>I have an IronPort S160. The website of one of our field offices has been classified as malware by the appliance. I clicked on the Report Misclassification button. What is the process now? How do I monitor the progress of the re-classification? <BR /><BR />In the meantime, I'd like to allow that website. I tried adding it to the Allow List under Web Security Manager, L4 Traffic Monitor, but that doesn't seem to do the trick. Is there another place I need to allow it?<BR /><BR />Thank you,<BR /><BR />Richard</P> Wed, 04 Mar 2009 03:50:36 GMT https://community.cisco.com/t5/web-security/handling-mis-classified-websites/m-p/1240311#M668 roffill_ironport 2009-03-04T03:50:36Z https://community.cisco.com/t5/web-security/handling-mis-classified-websites/m-p/1240312#M669 <HTML><HEAD></HEAD><BODY><P>Richard,<BR /><BR />This depends on what resource is incorrect. For example, this could be a URL category, L4TM, or Webroot mistake. <BR /><BR />Have you determined that this is an L4TM block? Or is this a proxy block? If it's a proxy block, please include the accesslog line that shows the block.</P></BODY></HTML> Thu, 05 Mar 2009 00:57:26 GMT https://community.cisco.com/t5/web-security/handling-mis-classified-websites/m-p/1240312#M669 jowolfer 2009-03-05T00:57:26Z https://community.cisco.com/t5/web-security/handling-mis-classified-websites/m-p/1240313#M670 <HTML><HEAD></HEAD><BODY><P>Hi Josh,<BR /><BR />Well, in a short time the site has been re-classified as Philantropic and Professional Orgs which is what it is, so that is great. I also discovered Policy Trace under System Administration that helps show what policy may be involved in blocking a particular site. <BR /><BR />We've been asked to block Personal/Dating URL category, but allow Facebook through as an exception. Where would I go to do this?<BR /><BR />Thanks,<BR /><BR />Richard</P></BODY></HTML> Thu, 05 Mar 2009 04:39:40 GMT https://community.cisco.com/t5/web-security/handling-mis-classified-websites/m-p/1240313#M670 roffill_ironport 2009-03-05T04:39:40Z https://community.cisco.com/t5/web-security/handling-mis-classified-websites/m-p/1240314#M671 <HTML><HEAD></HEAD><BODY><P>Richard,<BR /><BR />All you have to do is create a custom category that has facebook in it (facebook.com, .facebook.com).<BR /><BR />In the access policy, set Personal/Dating to block and this new custom category to allow.<BR /><BR />Custom categories always take precedence over standard categories.</P></BODY></HTML> Fri, 06 Mar 2009 00:34:57 GMT https://community.cisco.com/t5/web-security/handling-mis-classified-websites/m-p/1240314#M671 jowolfer 2009-03-06T00:34:57Z https://community.cisco.com/t5/web-security/handling-mis-classified-websites/m-p/1240315#M672 <HTML><HEAD></HEAD><BODY><P>Josh<BR /><BR />That worked great. Thanks!<BR /><BR />Richard</P></BODY></HTML> Fri, 06 Mar 2009 00:58:15 GMT https://community.cisco.com/t5/web-security/handling-mis-classified-websites/m-p/1240315#M672 roffill_ironport 2009-03-06T00:58:15Z https://community.cisco.com/t5/web-security/handling-mis-classified-websites/m-p/1240316#M673 <HTML><HEAD></HEAD><BODY><P> Hi,</P><P><BR />To the original poster's question - what is the way to check the status on a "Report Misclassification" button-press and what is the typical turnaround time to resolution?</P><P></P><P>Thanks,</P></BODY></HTML> Tue, 27 Nov 2012 23:50:07 GMT https://community.cisco.com/t5/web-security/handling-mis-classified-websites/m-p/1240316#M673 christopherhudel 2012-11-27T23:50:07Z