Hi,
is it possible to integrate TMG 2010 with TRITON AP-WEB 8.0 without the requirement
of the Content Gateway on Linux platform?
Or is the Web Security 7.8.4 the last version, where the all Websense components can reside on
the Windows OS servers only?
Thanks.
R.
We are midway through a large system upgrade including massive network expansion and lots of new hardware.
The contractor brought in a Mikrotik router to replace the Cisco ASA's that we had. These Mikrotik's are completely different and there are not many resources available online for help with them. I need to send all of my Internet traffic through my Websense Triton Webfilter, but cannot figure this out.
The Mikrotik in question is a CC1009-8G-1S model, and we are on version 7.7.0.1483 of Websense Triton Unified Security Center, running in a VmWare environment on a MS 2008 R2 Server vm with a single virtual nic. I haven't changed anything on the vm because the Cisco ASA and it were playing nicely together.
The contractor is proposing this:
Normal 0 false false false EN-US X-NONE X-NONE MicrosoftInternetExplorer4
Since your Websense box is on a VM and it won’t have dedicated NICs for pass-through mode, we are going to sacrifice a few ports on our Catalyst to make this happen. We’d appreciate you getting with Websense to see if this will work.
First we need you to configure the Websense VM with dual virtual NICs, like you did with the OnSSI recording server.
We’ll need you to place one NIC on VLAN26 and the other on VLAN27.
We will modify the Catalyst switch to accept traffic from these ports on the Trunks connected to your VM servers.
On our Catalyst switch we will separate VLAN25 (user traffic) to a separate port. We will use a short jumper to connect this port, which represents outbound traffic from your network, into the VLAN26 port of the Catalyst. This will force the outbound network traffic to flow into your Websense box.
We will then connect the VLAN27 port back into the Mikrotik router to provide a path to the internet. It will be expected that the Websense VM is going to push its traffic from one NIC to the other and that’s something we will need you to verify with the manufacturer.
Let us know if the folks at Websense think this will be an OK implementation and if not, what they recommend.
It seems that there has to be an easier way, any insights or help would be greatly appreciated!
OS: Server 2008 R2 - All servers
WS Version: Web Security 7.7.3
Server 1 (Main Site): Primary policy server/filtering server/Policy broker
Server 2 (Main Site): Log server/Triton WUI/
Server 3 (remote location): Secondary policy server/filtering
Server 4 (remote location): Secondary policy server/filtering
Server 3 and 4 are supposed to be sending log data to server 2 (They do not have local log servers). Everything has been working fine until recently, on server 3 and 4, the 'logging' container in /bin/config.xml somehow got automatically modified to show 'localhost' instead of the correct logging server IP (Server 2). Everything is correct in the WUI. I have switched to the secondary policy servers in Triton and the logging still points to the correct IP. If I save settings in the WUI and restart services on server 3 and 4 things will start working again and config.xml will be updated with the correct IP for logging. However, every couple days logging for those servers fails again and I look into the config.xml file again to see that the logging server has been set back to 'localhost' on servers 3 and 4. This has happened 2 to 3 times over the past two weeks.
No service restarts or failures are happening around the period that logging fails.
Has anyone experienced this issue or have some insight? Any advice would be appreciated. Please let me know if I need to clarify anything.
Hello all
Where can i find detail on the protocol used by Webscense when it replies to a request so that i can connect the proxy server i am developing to a Webscense filter server using UDP
I have packet sniffed and can see the UDP request need to be in the format of
Date Now, IpFrom, IPto,Url,Username
But i am not sure what is in the byte array i get back from the server and i need to parse the data.
Regards
Hi,
I was wondering if there was a way to change the default timeout of 30 minutes to something more reasonable? 30 minutes is rediculous. It also times out the Investigative Reports when open in a new window causing me to lose what I had on the screen.
At least in Websense 6 you could change the timeout to something more reasonable.
Thank you,
Steve
I am getting ready to switch from version 7.1 to 7.8. Our current deployment was set up and confugured by a previous admin, and I am having trouble figuring something out. When a page is blocked in our organization, it redirects the user to a page on our Intranet that details our web security policy. I want to mirror this for the new 7.8 deployment, but I cannot figure out how it was originally done with our current deployment. The block page directory on the server does not contain any references to our Intranet and appears to only contain default pages. Does anyone know how this would have been configured?
Hi,
We've just deployed the hosted solution with Websense and are having problems with credentials prompts from Office 2013 applications. If we stop Office from going online it stops but we need the features.
We basically get a proxy credential prompt for "office15client.microsoft".
If I browse the transaction viewer on the portal it shows these requests as action "authentication required". I've added the URL's to a custom whitelist and still no joy.
Several posts online suggest putting them into the bypass or non-proxy address list, this wont work for us as our firewall prevents all outbound connections on 80 and 443 (amongst others), so web traffic HAS to go through the proxy.
Is there a way of having it go through the proxy but not having it modified in any way? I thought that's what the custom category being set to allow would do.
Thanks
Dave
I registered on the site but yesterday it would not let me log in and it won't let me download the web-filter trial program so that i can install it and give it a test and i get set to this page from the dowlad tab
https://www.websense.com/content/mywebsense-restricted-access.aspx
if i follow the instructions in the email they send me then i end up on a page that shows me this xml file
[Error]
NoSuchKey
[Message]The specified key does not exist.[/Message]
[Key]downloads/files/v8.0.1/WebsenseTRITON801Setup.exe[/Key]
[RequestId]E3FF85DD9A78D8DD[/RequestId]
[HostId]
RnuOHp3cKGKegWXM84c8uBsVA+2S7VjwUTFhpbRetxh2J4HycfYdYX3rkw1VORUT4qWyzKsCpaU=
[/HostId]
[/Error]
what i do get is sales agents sending me an email and asking for my telephone number that they won't get like this.
what i think they need is a version of web-filter that's on a server where they can just give out an ip-address and let people have a play with a test account insteead of all this trouble of having to try and download the program and insall it.
I have a Websense installation where I moved the network agent from one machine to another. I uninstalled the "old" network agent but there were problems when it uninstalled. Eventually it did uninstall but when I log into the Websense Manager (7.1 on another host) there is a notification that the network agent on the old box is not running, even though it is not installed there.
I reinstalled and uninstalled it again on the old box in the hope that it would be properly removed from the Websense configuration, but I still get the error. Besides the error there are no problems and the newly installed network agent runs fine.
Is there a way to manually remove the old Network Agents configuration from the Websense installation so I do not see the warnings in the management console?
Recently upgraded to Windows 8.1 (new computers). I'm having trouble access the ChildPlus.net web application. I installed Triton Websense on the new computers. When i click on the ChildPlus icon nothing happens. The cursor will spin for a second or two then quit. When I uninstall Triton Websense ChildPlus works fine. I've added all bypass url's i could think of and it still won't work.
We had Window 7 OS on the older computers and everything worked fine and didnt need to add bypass url's in websense.
Please help
We are on version 7.8.4.
We have a custom block message for blocked http requests and it works perfectly. For the first time I saw someone get a block message for the protocol being blocked. This block message was the default out-of-the-box message. I would like to customize this message as well. However, I am not able to find the correct html file that loads this block message for protocols. Does anyone out there know which file I need to update for this?
Thank you
Hello All,
When I tried to use Dropbox and Google Drive software through Websence web filtering, cannot connect to the servers. also tried to permit all categories but still not connect. anyway let them working with websence !?
Thank you
Hi, I've read a lot about unblocking YouTube channels on other versions of Websense, but not for Cloud Web Security. Unblocking the Channel URL doesn't work on it's own, does anyone know how to just unblock a Channel and it's videos?
Thanks
We are using WSG v8.0.1 and the TRITON is hold at "processing....." after I login successful always.
Is it a normal/often at TRITON?
Websense support suggest to restart the service and then login again.
If it is still cannot resume, he suggest us to reboot the TRITON.
In our experience, it is successful to load the "Web" pages. But the "processing" is always happen.
In our production environment, we cannot restart or reboot the TRITON daily.
Hi All,
Any suggestion for this case?
Could you mind sharing your experience if you meet this issue before?
Many Thanks.
Hello,
I followed the instructions here: http://www.websense.com/content/support/library/deployctr/v77/Deployment%20and%20Installation%20Center%20v7.7.pdf
to install MS SQL Server 2008 R2 Express on a machine other then the machine running the Websense Triton Infrastructure.
However, during the installation I get the following error message:
Websense TRITON Setup:
Error: A network-related or instance-specific error occurred while establishing a connection to SQL Server. The server was not found or was not accessible. Verify that the instance name is correct and that SQL Server is configured to allow remote connections. (provider: Named Pipes Provider, error: 40 - Could not open a connection to SQL Server)
This is sort of weird to me because I thought the Websense installer was doing the installation? So why is it looking to connect to something it is trying to install?
I am sure that I am missing something pretty obvious but I haven't been able to find any help information to deal with this error.
It also states in the guide that we cannot download and install MS SQL Server 2008 R2 Express.
So right now I am sort of stuck in limbo. Any help on this?
Server OS: Windows Server 2008 32-bit with all recent updates
I want to allow a single user to access all videos just from a youtube channel, but block the rest of youtube. Can anyone tell me if that's possible? and if it is, how to do it?
I tried making a policy for that user, and achieved to open the www.youtube.com/*channel* while the rest continued blocked, but when I tried to watch a video from that channel it was blocked 'cause the URL becomes something like http://www.youtube.com/watch?v=****
Please help!
We recently upgraded to Websense 7.1. We are running 2 MS ISA 2005 servers and using a separate Log/Database server. The log server service is running and collecting data, but yet the Health Alert Summary continually shows that the service is not running. Has anyone experienced this issue? I feel that it may be a ISA rule that is not allowing the ISA servers to validate that the log server service is running but I do not see any Denies coming from the ISA servers.
Hi,
I'm trialing Endpoint DLP and I can't get the client to connect to the server. The client log shows the following error:
ERROR ClientCommunication - HTTPComm::SendObject to server <https://websense/EP/EndpointServer.dll> failed. CURL error - SSL connect error
How do I fix this? Can the client agent default to non-secure, ie port 80?
Thanks
I have a user getting the error Secure Connection Failed - and error occurred during a connection to PEM. SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key). The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the websie owners to inform them of this problem.
Is this due to the logjam vulnerability? If so, is there a fix for WES 7.3 PEM?
Hi,
I upgrade web security from 775 to 782. Using clustered sql on separate boxes. During the install, I received the message about not being able to create the log server.....continue and setup later. I did. Now i can't update my log server.On the server where websense is installed, i started a cmd prompt and went to
(in my case) d:\websense\web security\sql and tried the createdbu. i keep getting vaildation failed: network error IOException: Connection refused: connect launch4j: an error occurred while starting the application
I try a different user account and i get login failed for user xxx
I checked sql management and the login I'm putting is the correct one. What am i missing
any help appreciated
Thanks