This policy gives users access to the DLP gateway for the UserCheck services: DLP Portal, UserCheck, and SMTP.
Internal Firewall Policy for a Dedicated DLP GatewayĪ dedicated DLP gateway enforces a predefined, fixed Internal firewall policy. This would normally be the mail server that receives emails from users. You can also define the source IP address from which SMTP communication is allowed. The applicable ports are:įor example, to allow access from remote sites and/or remote users to the DLP gateway, add rules that allow access to the UserCheck service (port 18300) and HTTPS (port 443) from those VPN Communities to the DLP gateway. Use this option if you want to decide which ports to open for DLP. According to the Firewall policy - Allow access according to Firewall Rule Base rules defined by the SmartConsole administrator.
Including VPN encrypted interfaces - Select this option to let users access the DLP gateway through connections made from VPN encrypted interfaces. To make this option meaningful, make sure the topology of the internal and external interfaces of the DLP gateway are correctly defined. This option is recommended to prevent unauthorized access to the DLP gateway from the external gateway interfaces. If an interface is configured in the Topology page as Not Defined or as Interface leads to DMZ, it is not counted as an internal interface with respect to DLP Accessibility options. Through internal interfaces - Lets users to access the DLP gateway through interfaces that are defined as Internal in the Topology page of the DLP gateway object. Note - We do not recommend that you use "Through all interfaces" when the DLP gateway is deployed at the perimeter. Through all interfaces - Lets users access the DLP gateway through all interfaces, including external interfaces. You can configure user access to the DLP gateway in SmartConsole in the Accessibility section of the Data Loss Prevention page of the DLP gateway object. By default, users can only access the DLP gateway through its internal interfaces, but not through its external interfaces. To use the DLP Portal and UserCheck, users must be allowed to access the DLP gateway. Configuring User Access to an Integrated DLP Gateway #Efax messenger firewall port how to
The following sections explain how to maintain the DLP gateway and captured files. Advanced Configuration and Troubleshooting
0 kommentar(er)
