Trusted Hosts | NETGEAR STM150EW3-100NAS guide

ProSecure Web/Email Security Threat Management Appliance STM150 Reference Manual

Trusted Hosts

To identify trusted hosts, go to

Web Security > HTTP and HTTPS > Trusted Hosts

Figure 4-15

Do Not Intercept HTTPS Connections for the Following Hosts: The STM150 will bypass the scanning and certificate authentication of the sites listed. The certificate will be sent directly to the client for authentication, which means that the user will not get a security alert for sites listed.

Note that certain sites contain elements from different HTTPS hosts. For example, if https://example.com contains HTTPS elements from:

•secureserver1.example.com

•secureserver2.example.com

•imageserver.example.com

You must add the above-mentioned sites to the hostlist to completely bypass the scanning of https://example.com. This is because different files from these three hosts are also downloaded when the user attempts to access the HTTPS page “My Page”.

To add hosts to the Host Access Control List

1.Select the Bypass the following Hosts for HTTPS check box to enable the bypass list.

4-24	Customizing Scans

v1.1, March 2009

Image 74

NETGEAR STM150EW3-100NAS manual Web Security Http and Https Trusted Hosts, To add hosts to the Host Access Control List

Contents

NETGEAR, Inc EU Regulatory Compliance Statement TrademarksStatement of Conditions Bestätigung des Herstellers/Importeurs Voluntary Control Council for Interference Vcci Statement Additional Copyrights MD5 Product and Publication Details Zlib V1.1, March Contents Chapter Performing System Management Tasks Chapter Monitoring System Performance Page About This Manual Conventions, Formats, and Scope Revision History Manual Part Publication Version Description Number Date Chapter Introduction Key Features and Capabilities About Stream Scanning What Can You Do with an STM150? Service Registration Card with License Keys Front Panel Features Rear Panel Features Default IP Address, Login Name, and Password Location Choosing a Location for the STM150 Using the Rack Mounting Kit V1.1, March Provisioning Threat Management Services Choosing a Deployment Scenario Gateway Deployment Server Group Use the Installation Guide to Perform Initial Configuration Segmented LAN Deployment Logging In to the STM150 V1.1, March Registering the STM150 Click Register Email Security Use the Setup Wizard to Complete the ConfigurationSetup Wizard Options Web Security Email Notification Server Verifying the STM150 InstallationUpdate Settings Web Categories What to Do Next Testing ConnectivityTesting Http Scanning Performing System Management Tasks Modifying System SettingsConfiguring Network Settings V1.1, March Enabling Session Limits and Timeouts To enter a scanning exclusion rule On the menu, click Global Settings Scanning ExclusionsScanning Exclusions To set the system time Setting the System TimeOn the menu, click Administration Time Zone Specifying the Notification Server To specify a notification server Click Save Changes Customizing Email Alerts To enable system administrator email alerts On the menu, click Administration Snmp Configuring Snmp SettingsTo configure the Snmp settings To define Snmp Traps Supported MIB BrowsersDefining Trusted Snmp Hosts Backing Up and Restoring Configurations Backing Up the STM150 Configuration To restore the STM150 settings To Back Up the STM150 SettingsRestoring a Configuration Resetting to Factory Defaults Restarting the STM150 Enabling Remote Management Administering Software Updates Configuring Scheduled Updates On the menu, go to Administration Software Update To configure scheduled updatesPerforming a Manual Update Applying a Software Update that Requires a Reboot Administering Admin Login Timeouts and Passwords V1.1, March V1.1, March Default Scan Settings Chapter Customizing Scans Customizing Email Scanning Settings Insert Warning into Email Subject Line Smtp End User Email Notification SettingsEmail Security Anti-Virus Notification Settings on the menu Replace Infected Attachment with Warning Message Send Warning Email When Malware Is FoundAppend Safe Stamp Smtp & POP3 Email Content Filtering File Extension Filter by Password-protected AttachmentsFilter by Subject Keywords Filter by File Type Setting Up the Whitelist and Blacklist Protecting Against Email Spam To define the sender whitelist. On the menu, go to Email Security Anti-Spam Whitelist and Blacklist Configuring the Real-time Blacklist To define the recipient whitelist. On the menu, go to Configuring Distributed Spam Analysis To add a new provider To configure distributed spam analysis Customizing Web Scanning Settings Configuring Web Malware Scans Configuring Web Content Filtering V1.1, March V1.1, March Configuring Web URL Filtering White List Blacklist Https Third Party Website Certificate Handling Https Scan SettingsHttp Tunneling Show This Message When an SSL Connection Attempt Fails STM150 CA Certificate V1.1, March Certificate Management Web Security Https Scan Certificate Management Untrusted Certificates To import a new certificate used for Https scansTrusted Certificate Authorities Web Security Http and Https Trusted Hosts To add hosts to the Host Access Control ListTrusted Hosts Web Security FTP Configuring FTP ScanTo delete hosts from the Host Access Control List V1.1, March Chapter Monitoring System Performance Viewing the System Status Using Statistics and Web Usage Data V1.1, March Monitoring Security Monitoring Diagnostics Running DiagnosticsUsing the Network Diagnostic Tools To collect information about your STM150 Using the Realtime Traffic Diagnostic ToolsGathering Important Log Information Working with Logs Using Reports to Optimize Protection and PerformanceGenerate Network Statistics Report Querying Logs Sending Logs Using Logs to Identify Infected Clients Log Management On the menu, click Logs & Reports Scheduled Report Working with ReportsSend Reports by Email Support Online Support Using Online SupportEnabling Remote Troubleshooting Go to Support Hot Fixes To install a hot fixWorking with Hot Fixes Sending Suspicious Files to Netgear for Analysis On the menu, go to Support Malware Analysis Appendix a Default Settings and Technical Specifications Table A-1. STM150 Default Configuration Settings STM150 specifications are listed in the table below Appendix B Related Documents Document Link V1.1, March Index N