The URL Inspection tab is one of the most important ones, if security is high on your priority list. It controls the HTTP methods that UAG will allow, and the characters that will be permitted within URLs.
The top part of the tab shows, on the right, the currently available HTTP methods, or verbs, as they're sometimes called. This setting doesn't actually block anything—it only controls which of these methods will be available in the method drop-down list selection on the URL Set tab, which we will discuss soon. By default, only GET
, POST
, PUT
, DELETE
, TRACE
, and HEAD
are available on a newly created trunk. Some other HTTP methods, like OPTIONS
, RPC_IN_DATA
, PROPFIND
, and others, are added on a "need-to-know basis" when you add specific applications to your portal trunk, like, for example, Exchange and SharePoint. You can simply type additional methods and click on Add to add them to the list.
The middle section of this tab allows you to define a maximum size limit...