Support

Go to the table of contents Go to the previous page Go to the next page Go to the index View or print as PDF
Working With Websense Data Security
Working With Websense Data Security
Help | Content Gateway | Version 7.7.3
Related topics:
*
Registering and configuring Data Security
*
Configuring the ICAP client
 
Websense Content Gateway works together with Websense Data Security components to support:
*
The Threats dashboard (Web Security Gateway)
*
Web data loss prevention (DLP) and the Threats dashboard (Web Security Gateway Anywhere, or Web Security Gateway and a full Data Security subscription)
Threats dashboard with Web Security Gateway
When Content Gateway is deployed with Web Security Gateway, several Data Security components are installed on the Content Gateway and TRITON management servers to support the Web Security Threats dashboard (see TRITON – Web Security Help). Components include the Data Security Policy Engine (on the Content Gateway machine), and the Data Security Forensics Repository on the TRITON management server.
Content Gateway registers with these components when it's first configured and then checks registration status upon restart, automatically re-registering if necessary.
WebDLP and Threats dashboard with Websense Web Security Gateway Anywhere
When Content Gateway is deployed with Web Security Gateway Anywhere (or with Web Security Gateway and a full Data Security subscription), capabilities include forensics data in the Threats dashboard and data loss prevention (DLP) over Web channels such as HTTP, HTTPS, FTP, and FTP over HTTP. (A full Data Security deployment can extend Web DLP to include channels such as mobile devices, removable media, and printers. For a complete description of Websense Data Security, visit the Data Security product page at www.websense.com.)
WebDLP, as well as extended Data Security configurations, require separate installation of TRITON – Data Security and other Data Security components. Before configuring Content Gateway to work with Data Security, see the deployment and installation information hosted in the Websense Technical Library.
Content Gateway supports 2 methods of working with Data Security:
*
Using the Data Security components installed on-box with Content Gateway
*
Over ICAP using a Data Security components located on a separate host (intended for use with Data Security Suite versions 7.1 and earlier)
Only one method can be used at a time.
How WebDLP works
1.
The proxy intercepts outbound content and provides that content to Data Security.
2.
Data Security analyzes the content to determine if the Web posting or FTP upload is allowed or blocked.
*
The determination is based on the Data Security policy.
*
The disposition is communicated to the proxy.
*
Data Security logs the transaction.
3.
The proxy acts on the Data Security determination.
a.
If the content is blocked, it is not transmitted to the remote host and Data Security returns a block page to the sender.
b.
If the content is allowed, it is forwarded to its destination.
 
* 
Note 
When a request is blocked and the DLP server sends a block page in response:
*
Content Gateway forwards the block page to the sender in a 403 Forbidden message.
*
The block page must be larger than 512 bytes or some user agents (e.g., Internet Explorer) will substitute a generic error message.
Transactions over HTTP, HTTPS, FTP, and FTP over HTTP can be examined.
Transaction details are logged by Data Security, per its configuration.
Data Security components on-box with Content Gateway
When Content Gateway is installed, a small number of Data Security components are installed on the same box. Content Gateway registers with these components when it's first configured and then checks the registration status whenever it is restarted, automatically re-registering if necessary. For more information about Data Security registration, see Registering and configuring Data Security.
After Data Security policies have been created and deployed, Content Gateway sends content, such as postings and uploads, to the Data Security for analysis and policy enforcement.
Content Gateway collects and displays Data Security transaction statistics, such as:
*
the total number of posts
*
the total number of posts analyzed
*
the number of FTP uploads analyzed
*
the number of blocked requests
*
more
These statistics can be viewed in the Content Gateway Manager by navigating to Monitor > Security > Data Security. For a complete list of statistics, see Data Security.
Data Security over ICAP
When the Data Security policy engine is located on a different host, Content Gateway can communicate with Data Security over ICAP v1.0. For configuration details, see Configuring the ICAP client.
Print print article Email email article Font Size: A A

Search

Article Rating:

Do you have any additional feedback?    Email: close

Related Articles

Quick Links

Service Requests

How are we doing?

Provide us feedback on your experience with the Service Request portal.

provide feedback >

Go to the table of contents Go to the previous page Go to the next page Go to the index View or print as PDF
Working With Websense Data Security