The URL Inspection tab is one of the most important ones, if security is high on your priority list. It controls the HTTP methods that UAG will allow, and the characters that will be permitted within URLs.
The top part of the tab shows, on the right, the currently available HTTP methods, or verbs, as they're sometimes called. This setting doesn't actually block anything—it only controls which of these methods will be available in the method drop-down list selection on the URL Set tab, which we will discuss soon. By default, only
GET, POST, PUT, DELETE, TRACE, and
HEAD are available on a newly created trunk. Some other HTTP methods, like
OPTIONS, RPC_IN_DATA, PROPFIND, and others, are added on a "need-to-know basis" when ...