Documentation | Support

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
How Do I... > Move from monitor to protect?
Move from monitor to protect?
Administrator Help | Forcepoint DLP | Version 8.4.x
Forcepoint recommends that administrators start by setting policies to apply to all sources and destinations of data with a permissive action. After monitoring the results, they can start to apply more restrictive actions.
To block SMTP traffic with the protector (explicit MTA):
1.
In the Data Security module of the Security Manager, go to the Settings > Deployment > System Modules page and select the protector.
2.
In the Edit Protector window, select the Services tab, then click the SMTP service.
3.
In the Edit SMTP Service window, under the General tab, select Mail Transfer Agent (MTA) in the Mode drop-down menu.
4.
Select the Mail Transfer Agent (MTA) tab, and in the drop-down menu under Operation Mode, select Blocking.
5.
Adjust the configuration as needed, then click OK.
6.
Click Deploy.
The protector must be integrated with a third-party proxy to enforce DLP policy on HTTP traffic.
Alternately, use the Web Content Gateway appliance with Forcepoint DLP Network Gateway or Forcepoint Web Security to block HTTP traffic.
Action plans
Action plans can also be configured to block incidents that contravene policy. In the Data Security module of the Security Manager, go to the Main > Policy Management > Resources > Action Plans page to configure action plans.
*
Click an action plan in the list to update it. The action for each channel can be changed, if needed (quarantine for SMTP, block for HTTP via Web Content Gateway).
*
Click New in the toolbar at the top of the page to create a new action plan.
See Action Plans for more information.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
How Do I... > Move from monitor to protect?
Copyright 2017 Forcepoint. All rights reserved.