Technical Library
|
Support
Deploying Email Protection Solutions
> Single-appliance TRITON AP-EMAIL deployments
Single-appliance TRITON AP-EMAIL deployments
Deployment and Installation Center | Email Protection Solutions | v8.0.x
Single email appliance
A simple email protection deployment uses a single V-Series appliance or a single X10G blade server. In this installation, all email analysis occurs in the on-premises appliance component using a robust collection of threat detection tools (
Main > Policy Management > Filters
).
The Personal Email Manager facility on the appliance allows end users to manage blocked messages. The Secure Messaging portal lets users view and manage email that contains sensitive data.
In this scenario, the Email Log Server is installed on the same machine as the TRITON Manager. It can be installed on a separate machine if desired.
Data loss prevention (DLP) policies analyze email to ensure acceptable usage policies are enforced and sensitive company data is not lost. An email DLP policy can also facilitate message encryption. DLP policies are enabled in the TRITON Manager Email module (
Main > Policy Management > Policies
) but are configured in the Data module.
See the
Data Security Manager Help
for details about DLP policy settings. See the following
Administrator Help
topics for information about email filter and policy tools:
Creating and configuring email filters
Creating and configuring email policies
Single email appliance with Email Hybrid Module
This simple deployment uses a single V-Series appliance or a single X10G blade server. TRITON AP-EMAIL with the Email Hybrid Module offers a comprehensive email protection solution that combines the on-premises functions described earlier with hybrid (in-the-cloud) email analysis to manage an organization's email traffic.
The Email Hybrid Module provides an extra layer of analysis, stopping spam, virus, phishing, and other malware before they reach the network, potentially reducing email bandwidth and storage requirements. The Email Hybrid Module can be used to send outbound email to an encryption server before delivery to its recipient.
The hybrid service prevents malicious email traffic from entering a company's network by:
Dropping a connection request based on the reputation of the IP address of the request
Comparing the characteristics of inbound email against a Websense database of known spam and viruses, and blocking any message that matches a database entry
The hybrid service may also share spam, virus, and commercial bulk email detection information by writing extended headers in the mail it sends to the email protection system. The additional header information includes a threat detection "score," which is then used to determine message disposition. This function can enhance email system performance.
Your subscription must include the Email Hybrid Module, and the email hybrid service must be enabled and properly registered before hybrid service analysis can begin. Register for the hybrid service in the TRITON Manager Email module interface (
Settings > Hybrid Service > Hybrid Configuration
).
The Email Hybrid Service Log contains records of the email messages that are blocked by the email hybrid service. After the hybrid service is registered and enabled, users can view the log at
Main > Status > Logs
by clicking the Email Hybrid Service tab.
See the
Administrator Help
for TRITON AP-EMAIL for details on all email hybrid service options:
Registering the Email Hybrid Module
Configuring the Email Hybrid Service Log
Viewing the Email Hybrid Service Log
Deploying Email Protection Solutions
> Single-appliance TRITON AP-EMAIL deployments
Copyright 2016 Forcepoint LLC. All rights reserved.