Technical Library
|
Support
Email Security Gateway Deployment
> Single-appliance deployments
Single-appliance deployments
Deployment and Installation Center | Email Security Solutions | Version 7.8.x
Applies to:
In this topic
Email Security Gateway and Email Security Gateway Anywhere, v7.8.x
Email Security Gateway single appliance
Email Security Gateway Anywhere single appliance
Email Security Gateway single appliance
A simple Email Security Gateway deployment uses a single V-Series appliance (V10000 G2, V10000 G3, or V5000 G2) or a single X10G blade server. In this installation, all email analysis occurs in the Email Security Gateway on-premises component using a robust collection of threat detection tools (
Main > Policy Management > Filters
). The Personal Email Manager facility on the appliance allows end users to manage blocked messages.
In this scenario, Email Security Log Server is installed on the same machine as the TRITON console. It can be installed on a separate machine if desired.
Data Security data loss protection (DLP) policies analyze email to ensure acceptable usage policies are enforced and sensitive company data is not lost. A DLP policy can also facilitate message encryption. DLP policies are enabled in the Email Security module (
Main > Policy Management > Policies
) but are configured in the Data Security module.
See the
Data Security Manager Help
for details about DLP policy settings. See the following
Email Security Manager Help
topics for information about Email Security filter and policy tools:
Creating and configuring email filters
Creating and configuring email policies
Email Security Gateway Anywhere single appliance
A simple Email Security Gateway Anywhere deployment uses a single V-Series appliance (V10000 G2, V10000 G3, or V5000 G2) or a single X10G blade server. Websense Email Security Gateway Anywhere offers a comprehensive email security solution that combines the on-premises functions described earlier with hybrid (in-the-cloud) email analysis to manage an organization's email traffic.
The hybrid service provides an extra layer of email analysis, stopping spam, virus, phishing, and other malware before they reach the network, potentially reducing email bandwidth and storage requirements. The hybrid service can be used to send outbound email to an encryption server before delivery to its recipient.
The hybrid service prevents malicious email traffic from entering a company's network by:
Dropping a connection request based on the reputation of the IP address of the request
Comparing the characteristics of inbound email against a Websense database of known spam and viruses, and blocking any message that matches a database entry
The hybrid service may also share spam, virus, and commercial bulk email detection information by writing extended headers in the mail it sends to Email Security Gateway. The additional header information includes a threat detection "score," which Email Security then uses to determine message disposition. This function can enhance Email Security system performance.
The Email Security Gateway Anywhere subscription must include the email hybrid service, and the hybrid service must be enabled and properly registered before hybrid service analysis can begin. Register for the hybrid service in the Email Security Gateway management interface (
Settings > Hybrid Service > Hybrid Configuration
).
The Hybrid Service Log contains records of the email messages that are blocked by the hybrid service. After the hybrid service is registered and enabled, users can view the log at
Main > Status > Logs
by clicking the Hybrid Service tab.
See the
Email Security Manager Help
for details on all hybrid service options:
Registering the email hybrid service
Configuring the Hybrid Service Log
Viewing the Hybrid Service Log
Email Security Gateway Deployment
> Single-appliance deployments
Copyright 2016 Forcepoint LLC. All rights reserved.