Documentation | Support

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Using IPsec with the hybrid service
Using IPsec with the hybrid service
Forcepoint IPsec Advanced Guide | Forcepoint Web Security Cloud
If you are using Forcepoint Web Security Cloud with the hybrid service, the following additional steps are required:
*
If you do not have a cloud portal account, contact Forcepoint Technical Support to add your edge device details in the cloud before setting up your device.
*
Special Sync Service configuration is required. See IP-based policy enforcement in hybrid deployments.
*
If you have installed the Forcepoint root certificate and wish to see notification pages, in the Forcepoint Security Manager, navigate to Web > Settings > Hybrid Configuration > User Access > HTTPS Notification Pages, and mark the Use the hybrid SSL certificate... checkbox. This ensures that notification pages (such as block pages) are displayed for HTTPS requests.
IP-based policy enforcement in hybrid deployments
In order to use IP address-based policies for users whose requests go through the hybrid service, a configuration change is required on the Sync Service machine.
1.
Log on to the Sync Service machine with Administrator privileges.
2.
Navigate to the Websense\bin directory:
*
Linux:
/opt/Websense/bin
*
Windows:
c:\Program Files\Websense\Web Security\bin
or
c:\Program Files (x86)\Websense\Web Security\bin
3.
Open the SyncService.ini file in a text editor.
4.
Add the following line under the "SyncServiceHTTPPort" entry:
OptimizePolicyExtract=False
When you are finished, the file will look something like this:
[service]
SyncServiceHTTPAddress = <ip_address>
SyncServiceHTTPPort = 55832
OptimizePolicyExtract=False
5.
Save and close the file.
6.
Use the Windows Services tool or the /opt/Websense/WebsenseDaemonControl command to restart Sync Service.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Using IPsec with the hybrid service
Copyright 2022 Forcepoint. All rights reserved.