McAfee Web Gateway Administration

Similar documents
McAfee Web Gateway Administration Intel Security Education Services Administration Course Training

McAfee Network Security Platform Administration Course

McAfee VirusScan and McAfee epolicy Orchestrator Administration Course

McAfee Application Control/ McAfee Change Control Administration

Product overview. McAfee Web Protection Hybrid Integration Guide. Overview

McAfee Network Data Loss Prevention Administration

McAfee Drive Encryption Administration Course

McAfee Host Intrusion Prevention Administration Course

Product Guide. McAfee Web Gateway Cloud Service

McAfee Security Management Center

Product Guide. McAfee Web Gateway Cloud Service

Installation Guide. McAfee Web Gateway Cloud Service

McAfee Client Proxy Product Guide

Deploying the hybrid solution

Product Guide Revision A. McAfee Client Proxy 2.3.2

BIG-IP Access Policy Manager : Secure Web Gateway. Version 13.0

McAfee Endpoint Security

McAfee Embedded Control

McAfee Client Proxy Product Guide. (McAfee epolicy Orchestrator)

McAfee Firewall Enterprise epolicy Orchestrator Extension

McAfee Client Proxy Product Guide. (McAfee epolicy Orchestrator)

Installation Guide. McAfee Web Gateway. for Riverbed Services Platform

McAfee epolicy Orchestrator Release Notes

Client Proxy interface reference

Product Guide. McAfee Advanced Threat Defense 4.2.0

McAfee Data Protection for Cloud 1.0.1

McAfee Advanced Threat Defense

Building Resilience in a Digital Enterprise

The McAfee MOVE Platform and Virtual Desktop Infrastructure

McAfee Data Loss Prevention Prevent 11.1.x Release Notes

Installing and Configuring vcloud Connector

NGFW Security Management Center

Pass4sure q. Cisco Securing Cisco Networks with Sourcefire IPS

Active Directory Services with Windows Server

McAfee Total Protection for Data Loss Prevention

McAfee Content Security Reporter 2.6.x Product Guide

McAfee Embedded Control for Retail

McAfee Firewall Enterprise and 8.3.x

ACTIVE DIRECTORY SERVICES WITH WINDOWS SERVER

Client Proxy interface reference

McAfee Advanced Threat Defense Release Notes

McAfee Content Security Reporter Product Guide. (McAfee epolicy Orchestrator)

NGFW Security Management Center

McAfee Management for Optimized Virtual Environments AntiVirus 4.5.0

McAfee Network Security Platform 9.2

Reducing Operational Costs and Combating Ransomware with McAfee SIEM and Integrated Security

McAfee Public Cloud Server Security Suite

Active Directory Services with Windows Server

"Charting the Course... MOC B Active Directory Services with Windows Server Course Summary

McAfee Endpoint Security

Addendum. McAfee Virtual Advanced Threat Defense

Securing Your Microsoft Azure Virtual Networks

McAfee Web Gateway

Stonesoft Management Center. Release Notes Revision A

Product Guide. McAfee Content Security Reporter 2.4.0

Securing Your Amazon Web Services Virtual Networks

Product Guide. McAfee Plugins for Microsoft Threat Management Gateway Software

McAfee Network Security Platform 9.2

McAfee Virtual Network Security Platform

NGFW Security Management Center

Licensing the Firepower System

McAfee Skyhigh Security Cloud for Citrix ShareFile

McAfee epolicy Orchestrator Release Notes

Client Proxy interface reference

McAfee Network Security Platform 9.1

NGFW Security Management Center

McAfee Agent Interface Reference Guide. (McAfee epolicy Orchestrator Cloud)

Licensing the Firepower System

McAfee Web Gateway

NGFW Security Management Center

Licensing the Firepower System

Reference Guide Revision B. McAfee Cloud Workload Security 5.0.0

McAfee Network Security Platform 9.1

Create Decryption Policies to Control HTTPS Traffic

McAfee Advanced Threat Defense Migration Guide

NGFW Security Management Center

Stonesoft Management Center. Release Notes Revision A

Product Guide Revision A. Endpoint Intelligence Agent 2.2.0

Product Guide. McAfee GetSusp

Migration Guide. McAfee File and Removable Media Protection 5.0.0

NGFW Security Management Center

Addendum. McAfee Virtual Advanced Threat Defense

Active Directory Services with Windows Server

A: PLANNING AND ADMINISTERING SHAREPOINT 2016

McAfee EMM Best Practices Document Upgrading your High Availability EMM installation

NGFW Security Management Center

Comprehensive Database Security

McAfee Network Security Platform 8.3

NGFW Security Management Center

Management Console User Guide

McAfee Threat Intelligence Exchange Installation Guide. (McAfee epolicy Orchestrator)

McAfee Complete Endpoint Threat Protection Advanced threat protection for sophisticated attacks

Course : Planning and Administering SharePoint 2016

Managing Microsoft 365 Identity and Access

McAfee Network Security Platform

10969: Active Directory Services with Windows Server

NGFW Security Management Center

McAfee Network Security Platform 9.2

SharePoint 2016 Administrator's Survival Camp

File Reputation Filtering and File Analysis

Transcription:

McAfee Web Gateway Administration Education Services Administration Course Training The McAfee Web Gateway Administration course from Education Services provides an in-depth introduction to the tasks crucial to setting up and administering McAfee Web Gateway effectively. The course combines lectures and practical lab exercises, with significant time allocated for hands-on interaction with the McAfee Web Gateway user interface. It provides detailed instructions for the integration of this product. Audience This course is intended for system and network administrators, security personnel, auditors, and/or consultants. Course Goals Identify the purpose of the solution, as well as its key features. Plan the deployment. Install and configure solution components. Configure rules, rule sets, lists, and related components to meet customer security, performance, and usage requirements. Implement controls for administrator access. Monitor the solution s operation and performance. Gather information about the solution and generate reports for more detailed analysis. 1 McAfee Web Gateway Administration

Agenda At a Glance Day 1 Welcome Solution Overview Planning Installation System Configuration Policy Overview Rule, Rule Sets, and List Configuration Day 3 Quota Management and Coaching Web Caching, Next Hop Proxies, Progress Pages, and Block Pages Cloud Storage Encryption and Decryption (no lab) Logging Dashboards and Monitoring Content Reporting System Recommended Pre-Work It is recommended that students have a working knowledge of Microsoft Windows administration, system administration concepts, a basic understanding of computer security concepts, and a general understanding of internet services. Day 2 McAfee Global Threat Intelligence and URL Filtering Media Type Filtering Malware Filtering Authentication and Account Management Secure Socket Layer (SSL) Scanning Day 4 Advanced Management Basic Troubleshooting Web Hybrid Solution (no lab) McAfee Advanced Threat Defense Overview and Integration Course Outline Module 1 Welcome About the Course Acronyms and Terms About You McAfee Community Module 2 Solution Overview Challenges of Effective Web Security Solution Overview Key Features New/Enhanced Features for this Release Flexible and Scalable Deployments Access Controls Management Interface Central Management Integration Module 3 Planning Planning Overview Business Requirements Appliance Types Physical Appliance Requirements McAfee Web Gateway Operating System 2 McAfee Web Gateway Administration

Supported Peripheral Component Interconnect (PCI) Cards Virtual Appliance Requirements McAfee Blade Server System Requirements Client Requirements Supported Browsers Open Port Requirements Web Security Licenses Proxy Design Explicit/Transparent Proxies: Overview Explicit/Transparent Proxies: Comparison Proxy High Availability (HA) Reverse HTTPS Proxy Comparing ICAP and Reverse HTTPS Proxy Deployment Plan Change Control Module 4 Installation Installation Overview Requirements Downloading Appliance Software Using Online Tools Installing Software on Physical Appliances Installing Software on Virtual Appliances Setting up Virtual Appliance with Hyper-V Initial Configuration Settings Implementing Default Settings Implementing Custom Settings: DHCP Not Used Implementing Custom Settings: DHCP Used Downloading McAfee Web Gateway UI Webstart Completing the Setup Logging into the User Interface Verifying User Interface Is Accessible Navigating McAfee Web Gateway Interface Module 5 System Configuration Configuration Overview McAfee Web Gateway License Administration Obtaining McAfee Web Gateway Updates Downloading Update Package Manually Uploading Update Package Manually Configuring Automatic Updates Triggering Automatic Updates Reviewing Update Information on Dashboard Reviewing Update Logs Network Settings Overview Review: Gateway Versus Proxy Server Review: Transparent Gateway Review: Proxy Server Viewing Proxy Configuration Supported Network Modes Supported Data Transfer Technologies Proxy (optional WCCP) HTTP Proxy Settings 3 McAfee Web Gateway Administration

Web Cache Settings Domain Name System (DNS) Settings Other Proxy Settings Configuring Network Interfaces Configuring Domain Name Service Configuring Network Protection Configuring Static Routes Configuring Port Forwarding Configuring Date and Time Log File Manager Overview Enabling and Configuring Audit Log Settings Module 6 Policy Overview Review: Web Page Components Review: Hypertext Transfer Protocol (HTTP) Policy Overview Policy Page Overview Policy Page Overview: Rule Sets Tab Views Policy Page Overview: Lists Tab Policy Page Overview: Settings Tab Policy Page Overview: Templates Tab How Rules and Rule Sets Work Inside a Rule Set Rule Elements: Criteria Operators Rule Elements: Event Rule Cycles Rule Processing Nested Rule Sets How Lists and Rules Interwork Permissions Best Practices Module 7 Rule, Rule Set, and List Configuration Review: Filtering Traffic Review: Transactions (Request-Response) Review: Cycles Review: How Rules Work Default Rule Sets with Preconfigured Rules Rule Design Overview Example Deleting Default Policies Adding Top Level Rule Set Adding IP Blacklist Rule Adding IP Whitelist Rule Adding Block All Rule Review: Lists Example: List Management Editing IP Blacklist Editing IP Whitelist Tag Catalog Rule Elements: Actions 4 McAfee Web Gateway Administration

Module 8 McAfee Global Threat Intelligence (McAfee GTI) and URL Filtering URL Filtering Overview McAfee GTI Overview Some Ways McAfee Web Gateway Uses McAfee GTI Gateway Anti-Malware Engine Overview Configuring Gateway Anti-Malware Engine URL Filter Engine Overview Configuring Default URL Filter Engine Configuring Dynamic Content Classifier (DCC) Default URL Filter Rule Sets and Rules Default URL Filtering by Category Rule Set Default Web Category Filtering Rules Default Geolocation Rule Set Default Dynamic Content Classification (DCC) Rules Module 9 Media Type Filtering Media Type Filtering Overview Some Ways McAfee Web Gateway Controls Media Access : Media Type Criteria Default Media Type Filtering Rule Set McAfee Data Loss Prevention (McAfee DLP) Overview Adding McAfee DLP Classifications Adding McAfee DLP Dictionary Entries Default McAfee DLP Rule Sets and Rules Module 10 Malware Filtering Malware Filtering Overview Anti-Malware Scanning Engines and Behavior Configuring Mobile Code Behavior Configuring Advanced Settings Configuring Gateway Anti-Malware Settings Configuring Advanced Settings for Avira Configuring Custom Gateway Anti-Malware Engine Overview Default URL Filter Rule Sets and Rules Default Gateway Anti-Malware Rules McAfee Advanced Threat Defense Handle Offline Scan Rules McAfee Advanced Threat Defense Initial Offline Scan Rules McAfee Advanced Threat Defense Rules : Media Type Lists Default Enable Opener Rule 5 McAfee Web Gateway Administration

Module 11 Authentication and Account Management Authentication Overview Authentication Types Authentication Engines Configuring Authentication Method Joining Appliance to Windows Domain Default Authentication Rule Sets Transparent Authentication with Cookies Default Authentication Rule Sets Administrator Management Overview Default Administrator Roles Adding a Role Adding an Administrator Account Configuring External Account Management Module 12 Secure Socket Layer Scanning SSL Overview SSL Scanning Engines Viewing Default Certificate Authority Generating Certificate Exporting Certificate Importing Certificate: Internet Explorer Importing Certificate: Firefox Configuring Default Certificate Verification Configuring SSL Inspection Configuring SSL Client Certificate Handling Configuring SSL Client Context without CA Default SSL Scanner Rule Sets Default Restrict CONNECT Rule Sets Configuring SSL Scanner Rule Set Configuring Handle CONNECT Call Rule Set Configuring Certificate Verification Rule Set Configuring Verify Common Name (Proxy Setup) Rule Set Configuring Content Inspection Rule Set Module 13 Quota Management and Coaching Quota Management Overview Coaching Overview Configuring Quota System Settings Configuring Coaching Engine Settings Configuring Time Quota Engine Settings Configuring Volume Quota Engine Settings Configuring Authorized Override Engine Settings Configuring Blocking Session Engine Settings Importing Coaching Rule Sets Default Coaching/Quota Rule Sets Other Default Rule Sets 6 McAfee Web Gateway Administration

Configuring Coaching Rule Set Defining Coaching Criteria: Redirection Defining Coaching Criteria: Block Adding URLs to Coaching Rule Set Configuring Time Quota Rule Set Configuring Volume Quota Rule Set Other Rule Set Types Authorized Override Rule Set Blocking Sessions Rule Set Welcome Page Rule Sets Module 14 Web Caching, Next Hop Proxies, Progress Pages, and Block Pages Web Caching Overview Enabling Cache Option Web Cache Configuring Read from Cache Rule Set Default Write to Cache Rule Set Next Hop Proxies Overview Next Hop Proxy Progress Indication Overview Default Progress Indication Rule Sets Default Enable Progress Page Rule Default Enable Data Trickling Rule Block Pages Overview Basic Components Creating a Custom Block Page Modifying Custom Block Page Creating Block Action Configuring Action in Rule Exporting Templates to Archive Importing Template Archive Module 15 Cloud Storage Encryption and Decryption Solution Overview Importing Cloud Storage Encryption Rule Set Configuring Cloud Storage Encryption Engines Ensuring Secure Communications Manually Decrypting Data Encrypting Data Multiple Times Module 16 Logging Logging Overview System Log Files Viewing System Log Files User-Defined Log Files Log File Settings Log File Manager Settings: System Log Files File System Logging Settings: User-Defined Log Files Rule-Based Logging Overview Configuring File System Logging Settings Adding Custom Log Handler (Optional) 7 McAfee Web Gateway Administration

Defining User-Defined Properties Using the File Editor Module 17 Dashboards and Monitoring McAfee Web Gateway Dashboard Overview Alerts and Charts and Tables Tabs McAfee epolicy Orchestrator (McAfee epo ) Software Solution Overview Integration Workflow: McAfee Web Gateway Activities Configuring McAfee epo Software in McAfee Web Gateway Configuring Common Catalog Role Configuring Administrator Account for McAfee epo Software Enabling REST-Interfaces Adding Bypass Rule Set and Rule Integration Workflow: McAfee epo Software Activities Installing McAfee Web Gateway Extension Registering McAfee Web Gateway with McAfee epo Software McAfee Web Gateway Queries and Reports Working with Dashboards and Monitors Queries Overview McAfee Web Gateway Queries Module 18 McAfee Content Security Reporter McAfee Content Security Reporter Overview Planning: Platform Planning: Database Planning: McAfee epo Software Deployment Overview Downloading McAfee Content Security Reporter Software Installing McAfee Content Security Reporter Software Installing McAfee Content Security Reporter Extension in McAfee epo Software Registering Report Server in McAfee epo Software Adding Log Source in McAfee epo Software Configuring Log Settings in McAfee Web Gateway Rotating and Pushing Log in McAfee Web Gateway Verifying Log Push in McAfee epo Software Post Installation Activities Working with McAfee Content Security Reporter Dashboards in McAfee epo Software Working with McAfee Content Security Reporter Queries and Reports in McAfee epo Software Managing McAfee Content Security Reporter Permission Sets Maintaining McAfee Content Security Reporter Creating Custom Queries and Reports Using the Common Catalog 8 McAfee Web Gateway Administration

Module 19 Advanced Management Central Management Overview How It Works Configuring Central Management Working with Policies Configuring Updates Using Different Central Management Groups Single Network Group (Default) Multiple Network Groups Runtime Groups Update Groups Proxy High Availability Overview Configuring Proxy High Availability REST Interface Overview Types of Scripts Preparing Use of REST Interface Enabling Use of REST Interface Adding Custom Role and Account for REST Access Module 20 Basic Troubleshooting Troubleshooting Overview Common Problem Areas Performing a Backup and Restore McAfee Web Gateway Troubleshooting Tools Creating a Feedback File Reviewing Log Files Running a Packet Tracing Using Rule Tracing Central Connection Tracing Overview Working with Rule Tracing Files Working with Core Files System and Network Tools Overview Using System Tools Using Network Tools Command Line Interface (CLI) Module 21 Web Hybrid Solution Hybrid Solution Overview Configuring Web Hybrid Solution Web Hybrid Legacy Configuration Hybrid Lists Web Hybrid Policy Lists Web Hybrid Rules Authentication Considerations McAfee Client Proxy Solution Overview Deploying with McAfee epo Software Deploying Outside of McAfee epo Software McAfee Client Proxy Policies Overview Configuring Proxy Server List Defining Client Configuration Configuring Bypass List Configuring Block List Configuring Permission Sets 9 McAfee Web Gateway Administration

Module 22 McAfee Advanced Threat Defense Overview and Integration Malware Challenges McAfee Advanced Threat Defense Solution Overview Multilayer Defense Local Blacklist and Whitelist Static Code Unpacking Embedded Anti-Malware Engines McAfee GTI Integration Dynamic Analysis (Sandboxing) Integrated Advanced Threat Detection McAfee Advanced Threat Defense Basic Solution Components Physical Appliance Specifications Virtual Machine Requirements Supported File Types for Analysis Client Requirements Standalone Deployment Integrated Deployment McAfee Web Gateway Integration Overview Integration Workflow Configuring McAfee Web Gateway User Account in McAfee Advanced Threat Defense Configuring Settings for McAfee Advanced Threat Defense Configuring Rule Sets Learn More To order, or for further information, please call 1 888 847 8766 or email SecurityEducation@mcafee.com. 2821 Mission College Boulevard Santa Clara, CA 95054 888 847 8766 www.mcafee.com McAfee and the McAfee logo, epolicy Orchestrator, and McAfee epo are trademarks or registered trademarks of McAfee, LLC or Its subsidiaries in the US and other countries. Other marks and brands may be claimed as the property of others. Copyright 2017 McAfee, LLC. 62399crs_web-gateway-admin_0416 APRIL 2016 10 McAfee Web Gateway Administration

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback