Technical Library
|
Support
Deployment Planning for TRITON Solutions
> TRITON Enterprise deployment overview
TRITON Enterprise deployment overview
Deployment and Installation Center | Web, Data, and Email Protection | v8.3.x
TRITON Enterprise includes TRITON AP-WEB, TRITON AP-DATA, and TRITON AP-EMAIL.
The TRITON Manager, the management interface for web, data, and email advanced protection solutions, resides on a Windows server.
TRITON AP-WEB may be deployed on Forcepoint appliances, dedicated Windows or Linux servers, or a combination of platforms.
TRITON AP-DATA runs on Windows servers, optional appliances, and elsewhere in the network. Some components run in cloud infrastructures such as Microsoft Azure.
TRITON AP-EMAIL enforcement components reside only on Forcepoint appliances. Management and reporting components reside on Windows servers.
High-level deployment diagram
The diagram shows an appliance-based deployment:
Remote office and off-site users
You can use the Web Hybrid Module to provide web security for small remote offices. This is accomplished by designating a remote office as a hybrid filtered location. See
Initial Configuration
for more information.
Either the hybrid service or Forcepoint remote filtering software can provide web filtering for off-site users (e.g., telecommuters or traveling personnel).
To direct user requests to the hybrid service, you can install a PAC file or an endpoint client on the user's machine. Web requests from that machine are then directed to the hybrid service for policy enforcement.
To use remote filtering software, an optional component, Remote Filtering Server, is installed in your network DMZ, and Remote Filtering Client is installed on user machines. Web requests from the machine are sent to Remote Filtering Server, which connects to Filtering Service for policy enforcement. See
Deploying Remote Filtering Server and Client
.
Hybrid services
If your subscription includes the Web Hybrid module and Email Hybrid module:
The cloud-based hybrid web service can provide Internet security for remote offices and off-site users.
The cloud-based email hybrid service provides an extra layer of email scanning, stopping spam, virus, phishing, and other malware attacks before they reach your network and possibly reducing email bandwidth and storage requirements. You can also use the hybrid service to encrypt outbound email before delivery to its recipient.
TRITON AP-WEB and AP-EMAIL appliances
Forcepoint appliances may be used to deploy core web and email protection functionality.
The Content Gateway proxy on the appliance manages web traffic. Both TRITON AP-WEB and AP-DATA include Content Gateways modules.
Incoming email flows from the email hybrid service (if enabled) to the Forcepoint appliance and to your mail server. The Forcepoint appliance also provides the Personal Email Manager facility for end users to manage quarantined email.
Note that TRITON AP-EMAIL and TRITON AP-WEB cannot be deployed on the same appliance.
TRITON AP-DATA appliance
The TRITON AP-DATA appliance can be used in protector or mobile agent mode. The protector monitors and reports data loss and leaks of sensitive information. Using PreciseID technology, the protector can be configured to accurately monitor sensitive information-in-transit on any port.
The mobile agent monitors and blocks data downloaded to mobile devices that perform synchronization operations with the Exchange server. With the mobile agent, you can monitor and block data transmitted in email messages, calendar events, and tasks.
The protector and mobile agent are available as a Linux-based soft or physical V5000 appliance.
Components that may not be installed on Forcepoint appliances
TRITON management server
The TRITON management server is the Windows server on which the TRITON Manager (console) is installed. The TRITON console is the management and reporting interface for Forcepoint web, data, and email protection solutions.
The Data Security Management Server and, typically, Crawler also reside on the TRITON management server machine to provide key TRITON AP-DATA functions, including web and email DLP (data loss prevention) features.
Linking Service also usually resides on the management server.
Web and Email Log Server
A separate Windows machine hosts two instances of Log Server: one for TRITON AP-WEB and one for TRITON AP-DATA. These services receive information about web and email traffic and process it into their respective Log Database.
Optional web protection components
Sync Service and transparent identification agents (DC Agent, Logon Agent, eDirectory Agent, and RADIUS Agent) may not reside on Forcepoint appliances.
Also, you can install additional instances of several web protection components on Windows or Linux servers, if needed.
TRITON AP-DATA agents
The Crawler, analytics engine, and TRITON AP-ENDPOINT DLP are installed on appropriate machines.
See
Installing TRITON AP-DATA
for details.
TRITON AP-ENDPOINT DLP (User Machine)
TRITON AP-ENDPOINT DLP
can be installed on supported Windows, Mac, and Linux machines.
Third-party components
Microsoft SQL Server
Microsoft SQL Server, running on a Windows server in your network, is used to store Forcepoint TRITON logging, reporting, and in some cased, configuration data. Quarantined email messages are also stored here.
When TRITON components are installed, SQL Server must be installed and running, typically on its own machine as shown in the diagram above. SQL Server Express (installed using the TRITON Unified Installer) may be used in small deployments or evaluation environments.
Mail server
Your internal mail server.
Deployment Planning for TRITON Solutions
> TRITON Enterprise deployment overview
Copyright 2016 Forcepoint LLC. All rights reserved.