Скачать презентацию What s New in Watch Guard XCS v 9 Скачать презентацию What s New in Watch Guard XCS v 9

a31e4a0305ca4ebc336658da3fcf7592.ppt

  • Количество слайдов: 51

What’s New in Watch. Guard XCS v 9. 1 What’s New in Watch. Guard XCS v 9. 1

Introducing Watch. Guard XCS v 9. 1 q Enhancements that improve ease of use Introducing Watch. Guard XCS v 9. 1 q Enhancements that improve ease of use • • Improved web-based installation wizard After you upgrade to v 9. 1, keyboard and monitor are no longer required for future full software release upgrades! q Additional functionality to make an already significant XCS solution even more powerful • • • Web Reputation (with Reputation. Authority) Improved user-based web reporting statistics URL Categorization - Uncategorized sites Web authentication bypass (based on domain or IP address) Web URL Block List (Independent configuration from email URL Block Lists) IP address and time-based policies Watch. Guard Training 2

Introducing Watch. Guard XCS v 9. 1 q Additional XCS v 9. 1 enhancements Introducing Watch. Guard XCS v 9. 1 q Additional XCS v 9. 1 enhancements • • Enhanced Anti-Virus scanning capacity for email and web (factor of 2 to 3 times faster compared to previous XCS versions) because of Kaspersky engine update Significant email and web performance improvements with more than 100% faster performance Improved email message history search functionality for non-Latin based languages including Japanese, Chinese, Greek and other delimited languages Enhanced attachment control for stronger detection Analysis improvements for superior detection of latest spamming techniques Stronger protection against incoming spam and threats delivered via PDF attachments and Word. Perfect Greater control from data loss with ability to disable low-grade TLS encryption (less than 128 bit) Watch. Guard Training 3

Introducing Watch. Guard XCS v 9. 1 q Additional XCS v 9. 1 enhancements Introducing Watch. Guard XCS v 9. 1 q Additional XCS v 9. 1 enhancements (continued) • • • New Watch. Guard Email Encryption controls to disable Forward/Reply to prevent unencrypted messages from being distributed by a recipient Enhanced reporting with rejected connection details, and new option to expire on-box generated reports to free disk space Increased privacy settings for Tiered Administration settings New Brightmail add-on subscription for customers who want to enable multi-layered Anti-Spam engines New Mc. Afee add-on subscription for customers who want to enable multi-layered Anti-Virus engines Over 300+ resolved issues Watch. Guard Training 4

Web Installation Wizard Web Installation Wizard

Web Installation Wizard q Power on the XCS device q Wait at least 5 Web Installation Wizard q Power on the XCS device q Wait at least 5 minutes for the XCS device to initialize q From a computer connected to the XCS device, open a web browser and type https: //10. 0. 0. 1 q Log in with the default username/password: admin/admin Watch. Guard Training 6

Web Installation Wizard q Enter Network Settings: • • • Hostname Domain Gateway Name Web Installation Wizard q Enter Network Settings: • • • Hostname Domain Gateway Name Servers NTP Server Interface 1 (NIC 1) settings Ø IP address and netmask Ø External Proxy Server Watch. Guard Training 7

Web Installation Wizard q Update your feature key • • Click Update to enter Web Installation Wizard q Update your feature key • • Click Update to enter your feature key manually if you stored it on your computer If device is already registered, click Get Feature Key to obtain the feature key from Watch. Guard’s Live Security site q We highly recommend that you enter your feature key during the installation wizard Watch. Guard Training 8

Web Installation Wizard q Mail Configuration : • • • The email domain you Web Installation Wizard q Mail Configuration : • • • The email domain you are processing mail for Your internal mail server (for example, an Exchange server) Initial settings for Intercept Anti-Spam, Anti-Virus, and Attachment Control Watch. Guard Training 9

Web Installation Wizard q NEW! Enable mail processing in the web wizard to immediately Web Installation Wizard q NEW! Enable mail processing in the web wizard to immediately start processing messages after the installation Watch. Guard Training 10

Web Setup Wizard q Click Done. Allow a minute for the XCS to initialize. Web Setup Wizard q Click Done. Allow a minute for the XCS to initialize. q The XCS is ready to start processing both incoming and outgoing mail with Anti-Spam and Anti-Virus settings enabled Watch. Guard Training 11

Web Proxy Enhancements Web Proxy Enhancements

Web Proxy Enhancements q The XCS Web Proxy has been enhanced to improve ease Web Proxy Enhancements q The XCS Web Proxy has been enhanced to improve ease of use and add protection for web users • • • Web Reputation – Reputation. Authority now protects your web users from browsing sites with bad reputations (because of viruses, malware, etc. ) User-based reporting – Enhanced Web User reporting statistics URL Categorization Uncategorized Sites – You can now specify web sites that are not categorized by URL Categorization (web site whitelist) Web URL Block Lists - A new specific page to configure Web UBL has been added that is independent from the Email UBL configuration HTTP proxy configuration simplification - The global HTTP proxy configuration page is now divided into 3 separate configuration pages Ø HTTP/HTTPS Proxy Ø Traffic Accelerator Ø User Reporting Watch. Guard Training 13

Web Reputation Authority Web Reputation Authority

Web Reputation q New for v 9. 1 - Web Reputation • • The Web Reputation q New for v 9. 1 - Web Reputation • • The Reputation. Authority service helps to identify web sites that contain malicious or inappropriate content by reporting behavioral information based on a collection of statistics about a web site URL The Watch. Guard XCS can make a decision about whether to allow or block a web site request based on the reputation score of the web site URL Watch. Guard Training 15

Web Reputation q Select the Enable Reject on Reputation check box to enable reputation Web Reputation q Select the Enable Reject on Reputation check box to enable reputation lookups for web URLs to the Reputation. Authority network. q Reject Threshold allows you to specify a score. Web Reputation blocks web sites with a reputation score higher than the value you set (default is 90). Watch. Guard Training 16

Web Reputation q Bypass Scanning • For increased web performance, select Bypass Anti-Virus & Web Reputation q Bypass Scanning • For increased web performance, select Bypass Anti-Virus & Spyware scanning for good reputation to bypass Anti-Virus scanning for web requests if the reputation of the requested web site URL is below the specified bypass threshold (default is 10) Ø No Anti-Virus scanning is performed on web sites with good reputations where the risk of harmful content is minimal Watch. Guard Training 17

Web Reputation q You can also apply Web Reputation to individual policies for maximum Web Reputation q You can also apply Web Reputation to individual policies for maximum granularity of user, IP, domain, and group-based filtering Watch. Guard Training 18

URL Categorization Uncategorized Sites URL Categorization Uncategorized Sites

Uncategorized Sites q You can create a dictionary of uncategorized sites for the URL Uncategorized Sites q You can create a dictionary of uncategorized sites for the URL Categorization feature • Uncategorized sites feature allows you to upload your own dictionaries of sites that would otherwise be categorized and blocked Ø Sometimes referred to as exceptions, or whitelisting Ø Functionally similar to the HTTP Trusted Sites List, except that only URL Categorization is bypassed. Antivirus and HTTP Content Control are still enforced with the Uncategorized Sites feature After you upload a custom dictionary, you can select it when you edit the HTTP settings in any policy Watch. Guard Training 20

Web Proxy Authentication Bypass Web Proxy Authentication Bypass

Web Proxy Authentication Bypass q Two new authentication bypass settings: • • Networks that Web Proxy Authentication Bypass q Two new authentication bypass settings: • • Networks that Bypass Authentication - Any users on the specified networks are not prompted to authenticate when using the Web Proxy Domains that Bypass Authentication - Any users that try to connect to the specified domains are not prompted for authentication Watch. Guard Training 22

Web Monitoring and User-based Reporting Web Monitoring and User-based Reporting

Web Monitoring and User-based Reporting q XCS v 9. 1 enhances the monitoring and Web Monitoring and User-based Reporting q XCS v 9. 1 enhances the monitoring and reporting of a web user’s activity • Web summary is now separated out in the Dashboard Watch. Guard Training 24

Web Monitoring and User-Based Reporting q A new category in the Web menu for Web Monitoring and User-Based Reporting q A new category in the Web menu for more granular control on reporting of user web-based traffic • You can modify how the Watch. Guard XCS calculates the browse time for a user, and define users, domains, and categories that are not reported by the User Reporting feature. Your own custom dictionaries are used for both Ignore Users and Ignore Domain Names that you do want tracked by reporting Web site categories that you do not want tracked by reporting Watch. Guard Training 25

Web URL Block Lists Web URL Block Lists

Web Proxy Enhancements q A new menu item is available in Configuration > Web Web Proxy Enhancements q A new menu item is available in Configuration > Web > URL Block Lists • • URL Block Lists contain a list of domains and IP addresses of URLs that have appeared previously in spam, phishing, or other malicious web site content The URL Block Lists feature allows you to block access to web site URLs that appear on a URL Block List Watch. Guard Training 27

Web URL Block Lists q Select UBL Whitelist to configure domains that bypass URL Web URL Block Lists q Select UBL Whitelist to configure domains that bypass URL Block List processing q Select UBL Domains to customize the URL Block List lookup domains to use for URL checks Watch. Guard Training 28

HTTP Proxy Configuration Redesign HTTP Proxy Configuration Redesign

HTTP Proxy Configuration Redesign q HTTP proxy configuration page redesign • The global HTTP HTTP Proxy Configuration Redesign q HTTP proxy configuration page redesign • The global HTTP proxy configuration page has been divided into 3 separate configuration pages Ø HTTP/HTTPS Proxy Ø Traffic Accelerator Ø User Reporting q New items in the Web menu 9. 0 Watch. Guard Training 9. 1 30

Time Policies Time Policies

Time Policies q New for v 9. 1 – Time Policies q If time Time Policies q New for v 9. 1 – Time Policies q If time policies are configured, a policy with a specific effective time policy takes precedence over a policy with an effective time period of “Always” q Every policy you create can have its own associated time policy Watch. Guard Training 32

Default Time Policy q The system Default Policy has an effective time period of Default Time Policy q The system Default Policy has an effective time period of “Always” and cannot be changed. q You can additional Default Time Policies for specific periods of time Default policy This policy takes precedence over the Default “always” policy Watch. Guard Training 33

IP Policies IP Policies

IP Policies q Policies are enforced in this order from most specific to least IP Policies q Policies are enforced in this order from most specific to least specific • • • User policy ([email protected] com) IP address policy (10. 0. 1. 100) Group policy (Finance) Domain policy (example. com) Default Policy Global settings Watch. Guard Training 35

IP Policies q You can add up to five policies for specific addresses or IP Policies q You can add up to five policies for specific addresses or networks q IP policies apply to web traffic only • They are not used for email messages When you enter network addresses, you must add CIDR/slash notation The XCS automatically adds a hidden /32 for single host addresses Watch. Guard Training 36

Upgrade to XCS v 9. 1 Upgrade to XCS v 9. 1

Upgrade to XCS v 9. 1 q Because Security Connection does not automatically download Upgrade to XCS v 9. 1 q Because Security Connection does not automatically download full releases, you must download the software from the Live. Security site • From the Software Downloads page, download the [xcs 91. zip] file and extract the files Watch. Guard Training 38

Upgrade to XCS v 9. 1 q After you extract the files, run btiweb. Upgrade to XCS v 9. 1 q After you extract the files, run btiweb. exe • • BTIweb is a small web server on your computer that hosts the xcs-91. img file during the XCS upgrade process Run btiweb. exe, then click Start to start the web server Notice the icon changes after you install btiweb Watch. Guard Training 39

Upgrade to XCS v 9. 1 q Before you start the upgrade process, back Upgrade to XCS v 9. 1 q Before you start the upgrade process, back up your existing configuration so that it can be restored after the upgrade q To upgrade the XCS device to a major release requires that you reboot the appliance and press F 1 – Install at startup to install a new software image on the device q Choose one of three backup options • • • FTP SCP Local Disk • Use FTP or SCP backup when you back up a large reporting database Watch. Guard Training 40

Upgrade to XCS v 9. 1 q Choose the items you want to back Upgrade to XCS v 9. 1 q Choose the items you want to back up • In most cases, we recommend that you select all backup options Watch. Guard Training 41

Upgrade to XCS v 9. 1 q Save the backup to your computer’s local Upgrade to XCS v 9. 1 q Save the backup to your computer’s local disk • The MG-BCKUP file is time stamped for easy identification Year[10], month[04], day[30], and time[1437] Watch. Guard Training 42

Upgrade to XCS v 9. 1 q After you complete the backup process, open Upgrade to XCS v 9. 1 q After you complete the backup process, open a console connection to the XCS device. You will need these items: • • A monitor to connect to the VGA port on the back of the XCS A PS 2 or USB keyboard VGA port q With the monitor and keyboard connected, press the reset button located on the front of the appliance to reboot the XCS • Press the F 1 key on the keyboard Watch. Guard Training 43

Upgrade to XCS v 9. 1 q The Watch. Guard Installation Program welcome page Upgrade to XCS v 9. 1 q The Watch. Guard Installation Program welcome page appears q Press Enter to continue q Choose your type of keyboard in the next page and press Enter Watch. Guard Training 44

Upgrade to XCS v 9. 1 q In the Installation Type window, select Auto Upgrade to XCS v 9. 1 q In the Installation Type window, select Auto and then press Enter q On the next page, click OK to confirm the installation Watch. Guard Training 45

Upgrade to XCS v 9. 1 q On the Installation page, select Network to Upgrade to XCS v 9. 1 q On the Installation page, select Network to upgrade using the v 9. 1. img file: • • Type the appropriate network information for the XCS device. In the Install Path field, type the IP address of the computer where you installed the btiweb. exe file. Press OK. This is the IP address of the computer where you installed btiweb. Remember the trailing “/” character. Press Enter to confirm Watch. Guard Training 46

Upgrade to XCS v 9. 1 q On the Create Restore Image page, select Upgrade to XCS v 9. 1 q On the Create Restore Image page, select Save Image to Hard Disk and press Enter • Do not choose this option if you do not want to overwrite the 9. 0 image stored on the XCS device’s hard disk Watch. Guard Training 47

Upgrade to XCS v 9. 1 q After the disk partitioning is complete, the Upgrade to XCS v 9. 1 q After the disk partitioning is complete, the main console window appears • At this point, you can configure the device with the new installation wizard Ø After you install the system with the v 9. 1 wizard , you can build a new configuration, or restore your XCS v 9. 0 configuration Watch. Guard Training 48

Summary Summary

Summary q XCS v 9. 1 improves ease of use • • Improved web-based Summary q XCS v 9. 1 improves ease of use • • Improved web-based installation wizard After you upgrade to v 9. 1, keyboard and monitor are no longer required for future full software release upgrades! q Additional functionality makes an already significant XCS solution even more powerful • • • Web Reputation (with Reputation. Authority) Improved user-based web reporting statistics URL Categorization - Uncategorized sites Web authentication bypass (based on domain or IP address) Web URL Block List (Independent configuration from email URL Block Lists) IP address and time-based policies Watch. Guard Training 50

Thank You! Thank You!