User Guide
ACL DECISION TAGS
CHAPTER 20: LOGGING 439
ACL Decision Tags
An ACL decision tag is a field in an access log entry that indicates how the Web Proxy
handled the transaction. It includes information from the Web Reputation filters, URL
categories, and the scanning engines.
Table 20-7 describes the ACL decision tag values.
TCP_CLIENT_REFRESH
_MISS
The client sent a “don’t fetch response from cache” request by issuing
the ‘Pragma: no-cache’ header. Due to this header from the client, the
appliance fetched the object from the origin server.
TCP_DENIED
The client request was denied due to Access Policies.
NONE
There was an error in the transaction. For example, a DNS failure or
gateway timeout.
FTP_HIT The object requested was fetched from the disk cache. This is used for
native FTP transactions only.
FTP_MEM_HIT The object requested was fetched from the memory cache. This is
used for native FTP transactions only.
FTP_MISS The object was not found in the cache, so it was fetched from the
origin server. This is used for native FTP transactions only.
FTP_REFRESH_HIT The object was in the cache, but had expired. The proxy fetched the
object from the origin server. This is used for native FTP transactions
only.
FTP_DENIED The client request was denied due to Access Policies. This is used for
native FTP transactions only.
Table 20-7 ACL Decision Tag Values
ACL Decision Tag Description
ALLOW_ADMIN The Web Proxy allowed the transaction based on
Applications settings for the Access Policy group.
ALLOW_ADMIN_ERROR_PAGE The Web Proxy allowed the transaction to an IronPort
notification page and to any logo used on that page.
ALLOW_WBRS The Web Proxy allowed the transaction based on the
Web Reputation filter settings for the Access Policy
group.
Table 20-6 Transaction Result Codes (Continued)
Result Code Description