Quantcast
Channel: Forcepoint Community
Viewing all 2011 articles
Browse latest View live

Content Gateway (Appliance based) perfomance monitoring from a single location

May 28, 2014, 11:32 pm
$
0
0

I would like to ask for a solution / tool to monitor multiple content gateways' performance counters at a single location, that resides on appliances.

Right now, it is available on the appliance itself as MRTG Graphs.
We would like to see all the appliances / content gateway performance indicators as displayed by MRTG at a single location (e.g. like Triton?) or made available to a 3rd party tool/application.
In addition, it would be great to have that data available for trend analysis on performance over time for the whole deployment.

I imagine all large deployments could benefit from this feature for capacity planning, or simply monitoring and assessing the impact of a any changes made to the environment.
Since the MRTG data is available on each Content Gateway, I suppose all it would take is to provide an interface/way to access it externally from Triton or from other applications.

Search

block pages per role

May 29, 2014, 6:53 am
$
0
0

we have a number of roles ( one for each school); thus different policies

It would be good to be able to have a different block pages per role in order to be able to customise these in order to give each one a different look and feel

Need a simple custom page that only has title and Use Quote or Go Back button

May 29, 2014, 11:22 am
$
0
0

Having an issue with the default blockpage being embedded in a ton of sites that call facebook (we block them here). It makes the page basically unusable. At first I made a simple master.html with "Blocked by Websense" and it worked perfectly since it was just one small line vs. a giant link, category, and Websense logo. Unforunately, it seems it took away the Use/Go Back Quota options for sites that meet that category. I now need to modify it so it has the simple message and the Quota options. I poked around in security.js but didn't see anything (total Java noob here). Is there any way to do this?

Thanks! 

Search Logs - should contain multiple search criteria

May 30, 2014, 6:41 am
$
0
0

Hi,

The search logs option in ESG should allow to include multiple criteria. Many times, we would like to trace emails based on sender, recipient & date/time.

Umesh N Nambiar

Audit trail - release of emails from Quarantine

May 30, 2014, 6:47 am
$
0
0

Hi,

There needs to be a clear indication on the user/support team member who has released any email from the ESG mail quarantine.

Currently, this is not showing in "Log Details". It shows only "Message delivery completed".

Best Regards,

Umesh N Nambiar

Websense ESG - Viewing of Logs

May 30, 2014, 6:54 am
$
0
0

Hi,

Currently, when we click to view the logs of emails on ESG, it takes a lot of time to display the "Message Log Search Options".

This seems to be happening due to the default search critera (0:0 to 23:59) within the search page. In our case, due to the large mail flow, this results in a delay to display the page.

I suggest that when we click on "Logs", the search trigger should not occur by default.

Best Regards,

Umesh N Nambiar

Websense Administrator is taking up a lot of Bandwidth, need to reduce it.

May 29, 2014, 6:37 am
$
0
0

291,394KB Admin, Websense, this is what the Websense admin is taking up. Connecting to the http://204.15.66.80 which is a Websense update site. I want to reduce this and confine this connection to post production hours 22:00-6:00. How can I do this? I know that the master database needs to be downloaded regularly which is scheduled for overnight hours, but I am still seeing from the presentations reports the below numbers.

Thank you

 

Bandwidth URL
164,616 204.15.66.80
66,235 143.127.102.40
34,305 23.78.185.92
18,884 204.15.67.80
7,354 143.127.102.41

 

View All Cases

May 30, 2014, 8:12 am
$
0
0

I would like all my users to be able to see all of my cases.  If user1 creates a case in his/her MyWebsense account, I would like to have user2 with the ability to view that case as well using his/her own MyWebsense account.  We only have 5 cases available to us annually and I want to prevent the same issue being opened in 2 cases.

Search

Remote Filtering Client Akamai and hans-moleman.w3.org communication

May 30, 2014, 12:03 pm
$
0
0

We are running 7.7.3 and are utilizing the Remote Filtering Client. I have noticed that the RFC client is constantly trying to connect to hans-moleman.w3.org and akamai. I have contacted support but I still have no explanation. Does anyone have any idea why this is occurring. Thanks

ESG - Message Log Details

May 31, 2014, 3:34 am
$
0
0

Hi,

At the moment, when we initiate a trace of emails via the Logs and view the Log Details, we can see only the original mail flow action, i.e., it shows received, size, analysis, policy & delivery.

However, we have some rules wherein we enable an auto-forward to a different email address / auto-reply etc.

Such type of details are not visible in the Log Details.

This should be present so that verification of the policy and actions can be done easily.

Best Regards,

Umesh N Nambiar

ESG - tracing or verification of Rules/Triggers via console...

May 31, 2014, 4:01 am
$
0
0

Hi,

Currently, we are unable to do a trace/verification of mail flow versus the defined rules/triggers/actions from the web console.

This will be useful especially when we are trying to simulate / trace the potential actions/mail flow from a particular sender/recipient etc. Also, will be helpful to identify in scenarios where duplicate rules may have got created etc.

Best Regards,

Umesh N Nambiar

Upgrade From 7.8.2 to 7.8.3 is Problematic

May 29, 2014, 8:35 pm
$
0
0

Hello, I upgraded from 7.8.2 to 7.8.3 and when I tried to log into the USC it wouldn't let me.  Turns out it changed the admin password and e-mail address during the upgrade as well as the AD server settings.

Once I was able to login however I was greeted with the dreaded:

Extend and consolidate your security by adding industry-leading Web security with unified management and reporting.
Add the best protection against dynamic Web threats, including ThreatSeeker network updates.
To find out more, visit:
www.websense.com/GetWebSecurity

Not sure what I should do now.

David

 

 

How to have released spam go through Data Security also? A bad one got through...

May 31, 2014, 6:41 am
$
0
0

Using ESG v7.7.3. Since Data Security is processed after Anti-Spam, emails released from Quarantine go directly to the recipient instead of being processed through Data Security after release.

A person on the Help Desk released a zip file that was caught as spam but that had an .exe malware file in it.

Fortunately the AV on Exchange stopped it but if it had gone through the Data Security rules it would have been stopped in DLP since we block inbound executable files.

I did not see away for it to "continue processing" on the built-in policies.

ESG Message Logs not containing attachment details that are part of the email...

June 1, 2014, 11:13 pm
$
0
0

Hi,

The Message logs do not seem to indicate whether there were any attachments and details of those in the Message logs.

This would help, especially when we are evaluating possible Email DLP policies that may need to be enabled.

Best Regards,

Umesh N Nambiar

Web Security (Win2012 R2) has upgraded to 7.8.3 but version number is unchanged?

June 2, 2014, 8:04 am
$
0
0

The Installer shows the Web Security version number is 7.8.3.1295 but the Triton console shows it to be

Web Security build:"7.8.2.1167"

Have I upgraded and is it possible one module failed to upgrade

Search

VERY disappointed - Are you interested in me becoming a customer or not?

June 3, 2014, 12:36 am
$
0
0

I've been trying for a week to get a trial package downloaded to no avail, and no response to any queries I have made. I guess you are just not interested in my becoming a customer.

Numerous pages where http and https is on the same page and causes popups - poor design.  Difficult to find things.

 

Cloud Web Security Gateway routing issue when on FortiClient VPN

February 20, 2014, 7:19 am
$
0
0

All our laptops are installed with Websense Endpoint Client which ensures all HTTP/HTTPS traffic is routed to Websense Cloud service whether on corporate LAN, public WiFi or home broadband.

However, we are experiencing issue with Websense routing when after connecting to an SSL VPN using FortiClient to a Fortigate firewall. In certain scenarios, the web browser traffic tries to connect directly to the internet, rather than to Websense servers. See details below

- We traffic does proxy correctly on the internal LAN and it does proxy correctly when on an external network e.g. home broadband

- it does proxy correctly correctly when connecting via the VPN WHEN THE BROWSER IS OPENED BEFORE MAKING THE VPN CONNECTION.

- it does NOT proxy if I make the VPN connection‎ first and then open the browser to access the internet. In this scenario, using TCPView, ‎I can see the browser trying to connect directly to websites which I do not want. I still need this proxy in via Websense as with all other scenarios.

The fact Websense traffic routes to Websense via the VPN in 1 scenario suggests the traffic is allowed across the VPN and out the corporate firewall unhindered.

I just can’t work out what is different in connecting the web browser first and what is causing the web browser to try and connect to the internet directly… Incidentally, when I manually download the PAC file in this situation, it downloads fine. Wireshark doesn't show much as soon as the VPN is connected due to encryption I assume.

Any thoughts?

 

Increasing Character Limit

April 4, 2013, 8:44 am
$
0
0
Product Name: Web Security Platform: V5000 G2 Operating System: Linux The usernames created are limited to 16 characters. My request is to increase this limit to 30 characters. http://s10.postimg.org/l1v5x1ot5/Usernames.png

Mask Personal Number Data from Incident reprot

June 4, 2014, 1:02 am
$
0
0

Hi,

There is requirement comes up for one of our client that they don't  want Personal number information in clear text in incident report.

For example in below Policy Norway PII in Match "es" field Personal number information is showing in clear text.It should be masked same as when policy detect any credit card data.

==================================

Policy: Norway PII

Rule: Norway PII: Name and Personal Number

> Classifier: Norwegian name near Norwegian personal number

2 match(es): 01038449997, 20093432968,

==================================

We are looking for something like  the below solution.Like here credit card data is showing masked with xxxx

=================== 

Policy: PCI

Rule: PCI: Credit Card Magnetic Strips

> Classifier: Credit Card Magnetic Tracks (Script)

12 match(es): ;5301xxxxxxxx0191=08051010912345678901?3

Delta valid

, ;5641xxxxxxxx7008=08051011212345678901?>

==================

Change Tracking

June 4, 2014, 3:09 am
$
0
0

We have been requesting for this feature for a quite a long time.

We are looking for Change Tracking feature within the Triton Console. This has been diveded into 2 sections:

1. Change Tracking Comment : 

The Triton Administrator after doing the required changes in Triton Manager , select deploy for saving the saving the configuration. we would like to have a Change Tracking  Test Box Pop-in up which will allow the Admin to include high level info on the changes which was done ( Change request number, Incident number, etc), This will be required to validate during audit purpose.

2.  Email Alert Notification of Change Tracking Comment:

Upon selecting deploy, an Email containing the Change Request Comments in its Body sections needs to be sent to Managers, Monitoring team ( Option to be available to get this email address added).

 

 

Viewing all 2011 articles
Browse latest View live
Search