Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Web Policy Code Elements

The following list includes and explains important elements of the code for the web policy that is implemented under Secure Web Gateway.

Element Description
Function A piece of code that performs a particular task, for example, finding out whether a URL falls under a category that is in a block list

A function returns a value and can have parameters, for example, the settings for a feature that supports the function.


MWG.UrlCategories (gtiSetting)

The MWG.UrlCategories function returns the category or categories that a particular URL falls under.

The function is supported by the Web Filtering feature, which is configured with the (gtiSetting) setting.

This setting involves the Global Threat Intelligence (GTI) database, where information about URLs and their categories is stored, in the URL filtering process.

IF-THEN statement A statement in a routine that specifies a condition and what is to happen if the condition is met

A simple IF-THEN statement includes an IF and a THEN clause.


IF MWG.BodyInfected (gam) THEN {
     MWG.Block (McAfee_Malware_found, "Block If Virus Was Found",
      "Gateway Anti-Malware")

A more complex IF-THEN statement can have more than one condition, ELSE clauses, and embedded IF-THEN statements.

An IF-THEN statement is also referred to as rule.

Procedure A piece of code that performs a particular task, for example, blocking a file that was received from a website in response to a user's request

A procedure does not return a value. It can have parameters.


MWG.Block (McAfee_Malware_found,"Block If Virus Was Found",
 "Gateway Anti-Malware")

The MWG.Block procedure blocks a file. The parameters specify the block reason, the name of the blocking rule, and the name of the setting for the procedure.

The setting lets the procedure send a block message to the user who requested access to the file that was blocked.
Routine A usually larger portion of code that enables a particular web policy function, for example, anti-malware filtering or applying full browser isolation, and determines its behavior

A routine includes other code items such as functions and procedures.

In the code, a routine begins with the ROUTINE term and the routine name.


ROUTINE Anti_Malware_Rules


  • Was this article helpful?