Provisioning Threat Management Services | NETGEAR STM150EW3-100NAS

ProSecure Web/Email Security Threat Management Appliance STM150 Reference Manual

Chapter 2 Provisioning Threat Management Services

Provisioning the STM150 ProSecure Web/Email Security Threat Management Appliance STM150 in your network is described in this chapter.

This chapter contains the following sections:

•“Choosing a Deployment Scenario” on page 2-1

•“Use the Installation Guide to Perform Initial Configuration” on page 2-4

•“Registering the STM150” on page 2-7

•“Use the Setup Wizard to Complete the Configuration” on page 2-8

•“Verifying the STM150 Installation” on page 2-9

•“What to Do Next” on page 2-10

Choosing a Deployment Scenario

The STM150 is an inline transparent bridge appliance that can easily be deployed to any point on the network without requiring network reconfiguration or additional hardware.

The following are the most common deployment scenarios for the STM150. Depending on your network environment and the areas that you want to protect, you can choose one or a combination of these deployment scenarios.

•“Gateway Deployment” on page 2-2

•“Server Group” on page 2-3

•“Segmented LAN Deployment.” on page 2-4

Provisioning Threat Management Services

2-1

v1.1, March 2009

Image 21

NETGEAR STM150EW3-100NAS manual Provisioning Threat Management Services, Choosing a Deployment Scenario

Contents

NETGEAR, Inc Statement of Conditions TrademarksEU Regulatory Compliance Statement Bestätigung des Herstellers/Importeurs Additional Copyrights Voluntary Control Council for Interference Vcci Statement MD5 Zlib Product and Publication Details V1.1, March Contents Chapter Performing System Management Tasks Chapter Monitoring System Performance Page Conventions, Formats, and Scope About This Manual Manual Part Publication Version Description Number Date Revision History Chapter Introduction About Stream Scanning Key Features and Capabilities What Can You Do with an STM150? Front Panel Features Service Registration Card with License Keys Rear Panel Features Choosing a Location for the STM150 Default IP Address, Login Name, and Password Location Using the Rack Mounting Kit V1.1, March Choosing a Deployment Scenario Provisioning Threat Management Services Gateway Deployment Server Group Segmented LAN Deployment Use the Installation Guide to Perform Initial Configuration Logging In to the STM150 V1.1, March Click Register Registering the STM150 Setup Wizard Options Use the Setup Wizard to Complete the ConfigurationEmail Security Web Security Update Settings Verifying the STM150 InstallationEmail Notification Server Web Categories Testing Connectivity Testing Http ScanningWhat to Do Next Modifying System Settings Configuring Network SettingsPerforming System Management Tasks V1.1, March Enabling Session Limits and Timeouts On the menu, click Global Settings Scanning Exclusions Scanning ExclusionsTo enter a scanning exclusion rule Setting the System Time On the menu, click Administration Time ZoneTo set the system time To specify a notification server Specifying the Notification Server Customizing Email Alerts Click Save Changes To enable system administrator email alerts Configuring Snmp Settings To configure the Snmp settingsOn the menu, click Administration Snmp Supported MIB Browsers Defining Trusted Snmp HostsTo define Snmp Traps Backing Up the STM150 Configuration Backing Up and Restoring Configurations To Back Up the STM150 Settings Restoring a ConfigurationTo restore the STM150 settings Restarting the STM150 Resetting to Factory Defaults Enabling Remote Management Configuring Scheduled Updates Administering Software Updates To configure scheduled updates Performing a Manual UpdateOn the menu, go to Administration Software Update Applying a Software Update that Requires a Reboot Administering Admin Login Timeouts and Passwords V1.1, March V1.1, March Chapter Customizing Scans Default Scan Settings Customizing Email Scanning Settings End User Email Notification Settings Email Security Anti-Virus Notification Settings on the menuInsert Warning into Email Subject Line Smtp Send Warning Email When Malware Is Found Append Safe Stamp Smtp & POP3Replace Infected Attachment with Warning Message Email Content Filtering Filter by Subject Keywords Filter by Password-protected AttachmentsFile Extension Filter by File Type Protecting Against Email Spam Setting Up the Whitelist and Blacklist Email Security Anti-Spam Whitelist and Blacklist To define the sender whitelist. On the menu, go to To define the recipient whitelist. On the menu, go to Configuring the Real-time Blacklist To add a new provider Configuring Distributed Spam Analysis To configure distributed spam analysis Customizing Web Scanning Settings Configuring Web Malware Scans Configuring Web Content Filtering V1.1, March V1.1, March White List Configuring Web URL Filtering Blacklist Https Scan Settings Http TunnelingHttps Third Party Website Certificate Handling STM150 CA Certificate Show This Message When an SSL Connection Attempt Fails V1.1, March Web Security Https Scan Certificate Management Certificate Management To import a new certificate used for Https scans Trusted Certificate AuthoritiesUntrusted Certificates To add hosts to the Host Access Control List Trusted HostsWeb Security Http and Https Trusted Hosts Configuring FTP Scan To delete hosts from the Host Access Control ListWeb Security FTP V1.1, March Chapter Monitoring System Performance Viewing the System Status Using Statistics and Web Usage Data V1.1, March Monitoring Security Running Diagnostics Using the Network Diagnostic ToolsMonitoring Diagnostics Using the Realtime Traffic Diagnostic Tools Gathering Important Log InformationTo collect information about your STM150 Using Reports to Optimize Protection and Performance Generate Network Statistics ReportWorking with Logs Sending Logs Querying Logs Log Management Using Logs to Identify Infected Clients Working with Reports Send Reports by EmailOn the menu, click Logs & Reports Scheduled Report Using Online Support Enabling Remote TroubleshootingSupport Online Support To install a hot fix Working with Hot FixesGo to Support Hot Fixes On the menu, go to Support Malware Analysis Sending Suspicious Files to Netgear for Analysis Table A-1. STM150 Default Configuration Settings Appendix a Default Settings and Technical Specifications STM150 specifications are listed in the table below Document Link Appendix B Related Documents V1.1, March Index N