Documentation
|
Support
Overview
Overview
Help | Content Gateway | v8.5.x
Content Gateway is the web proxy component of Forcepoint™ Web Security.
Content Gateway performs advanced content analysis precisely when it is needed—as the content flows through the proxy. The results of analysis are used by Forcepoint Web Security to protect you from malicious content and apply your Acceptable Use Policy (AUP). This on-demand analysis protects users and networks at the same time that it makes rapidly changing websites safe for your organization and users. Advanced analysis may be applied to HTTP, HTTPS, and FTP channels.
The precise application of advanced analysis is configured by the administrator for each Forcepoint Web Security deployment.
Content Gateway can also be configured to function as a high-performance web proxy cache that caches frequently accessed information at the edge of the network. This brings content physically closer to end users for faster delivery and reduced bandwidth usage.
Content Gateway can also be deployed as the web proxy component of Forcepoint DLP (absent Web Security). A core version of Content Gateway is included in Forcepoint DLP Network licenses. Known as Forcepoint DLP Web Content Gateway, this core version is managed through Content Gateway and Forcepoint DLP managers, and allows Content Gateway to block traffic that matches the Forcepoint DLP web policies. Note that some features of Content Gateway are available only when Content Gateway is deployed with Forcepoint Web Security, and not in a standalone deployment with Forcepoint DLP Network. Those features are marked accordingly.
Content Gateway can be deployed as described in
Content Gateway deployment options
.
Content Gateway can also be configured to:
Ensure that clients are authenticated before they access content. Content Gateway supports Integrated Windows Authentication, legacy NTLM (NTLMSSP), LDAP, and RADIUS. See,
Content Gateway user authentication
.
Control client access to the proxy. See,
Controlling client access to the proxy
.
Use different DNS servers, depending on whether the proxy needs to resolve host names located inside or outside a firewall. This enables you to keep your internal network configuration secure while providing transparent access to external sites on the Internet. See,
Using the Split DNS option
.
Use the co-located Data policy engine or the ICAP interface to enable sites using Forcepoint DLP to examine outbound material such as web postings, and block or allow based on company policy. See
Working With Web DLP
.
Control access to the Content Gateway manager using:
SSL (Secure Sockets Layer) protection for encrypted, authenticated access
User accounts that define which users can access the manager and which activities they can perform (for example, view statistics only or view statistics and configure Content Gateway).
Integrate into your firewall and control traffic through a SOCKS server.
See
Content Gateway Security
.
Related topics:
Content Gateway deployment options
Content Gateway components
Proxy traffic analysis features
Technical Support
Overview
Copyright 2023 Forcepoint. All rights reserved.