Technical Library
|
Support
Deploying Email Protection Solutions
> System requirements
System requirements
Deployment and Installation Center | Email Protection Solutions | v8.0.x
To view complete hardware, software, and Web browser requirements for TRITON AP-EMAIL, see
System requirements for this version
.
Every TRITON AP-EMAIL deployment includes the following components at a minimum:
In the DMZ
A Websense appliance (V-Series, X-Series blade, or virtual appliance), which includes the core email protection functions and the Personal Email Manager and Secure Messaging end-user facilities
Email traffic volume in your network may determine which type of appliance you use and how many appliances your deployment needs.
In the internal LAN
TRITON Manager with both Email and Data modules installed on a Windows Server® 2008 R2 or 2012 machine
Email Log Server
Email Log Database (Microsoft® SQL Server® 2008, 2008 R2, 2012, or 2008 Express R2)
Mail exchange server
End-user machines
Note
All email protection components must be synchronized by date and time for proper system communication.
The network DMZ contains the devices that have direct contact with the Internet. This zone is a buffer between the Internet and the internal LAN. In our examples, the appliance and any router, switch, or load balancer adjacent to the firewall are located in the DMZ.
Websense appliances
The Websense V-Series, X-Series blade, or virtual appliances provide the majority of email protection functions. Incoming email flows from the Email Hybrid Module (if purchased and enabled) to the Websense appliance and to the mail server. The Websense appliance also provides the Personal Email Manager and Secure Messaging end-user facilities. TRITON AP-EMAIL can be installed and deployed on a dual-mode V-Series appliance with either TRITON AP-WEB or Web Filter & Security.
TRITON AP-EMAIL can occupy individual blade servers on an X-Series appliance. The X-Series chassis may include a combination of Email and Web blade servers.
TRITON management server
The TRITON management server hosts the TRITON Manager (TRITON console). This machine includes TRITON Infrastructure and any installed TRITON console management modules. In a TRITON AP-EMAIL deployment, the TRITON management server includes both the Email and Data modules.
Email Log Server
The TRITON management server often includes the Email Log Server component, although this component can also be installed on a separate machine. The Log Server passes information to the SQL Server reporting database (Email Log Database) for use in generating dashboard charts and reports, messages, and Message Log data.
During installation, a user configures certain aspects of Log Server operation, including how Log Server interacts with the Email module. These settings can be changed when needed via the Email Log Server Configuration utility. Other details about Log Server operation are configured in this utility as well. The utility is installed on the same machine as Log Server.
Email Log Database (Microsoft SQL Server)
Microsoft SQL Server handles the system and message log database and stores some Email module configuration settings. SQL Server may be installed on the TRITON management server or on a dedicated server. For optimal performance, Websense recommends that a full SQL Server (2008, 2008 R2, or 2012) be installed on a separate machine. (SQL Server Express, which can be installed as part of the TRITON console installation, is recommended only for evaluation purposes.) For information about database systems in Websense products, see
Administering Websense Databases
.
Personal Email Manager
The email appliance is the portal for Personal Email Manager end users who are authorized to manage their own blocked mail. Personal Email Manager end-user options are configured in the TRITON Manager Email module interface (
Settings > Personal Email
). A Personal Email Manager administrator can determine:
Which end users can access the Personal Email Manager utility and which actions, if any, those users are allowed to perform on blocked messages
What the blocked email notification message contains
Which end users are allowed to manage personal Always Block and Always Permit lists
Whether a user can manage multiple email accounts
Whether a user can delegate email account management responsibilities to another individual
Secure Messaging portal
The email appliance also provides the Secure Messaging end-user portal to allow an organization to maintain a secure area for users to view and manage messages that contain sensitive personal data. An end user can view received messages and reply to or forward a received message in this portal.
Deploying Email Protection Solutions
> System requirements
Copyright 2016 Forcepoint LLC. All rights reserved.