Safenet Esafe xg-210 User manual

eSafe - XG Series

Quick Start Guide

10563

eSafe Appliance Initial Conguration

eSafe’s default security policy provides a high level of security that is

suited to most organizations. To get started, you must perform the

following actions:

Dene LDAP Settings: The LDAP server settings are dened

under in the LDAP Conguration page, under the Objects tab. Based

on the dened settings, it is possible to view LDAP information by

groups, users, or users and groups. You can then select users from

these lists.

Fine tune the URL Filter settings: eSafe’s URL Filtering module

allows controlling access to web pages by dening which users can

access which URLs or URL categories, and when these pages can

be accessed. In the Policy Settings mode, select Cong | URL

Filter and select the Enable URL Filter Service check box.

Review the default policy settings and ne-tune them to suit your

organization.

Fine tune AppliFilter settings: AppliFilter™ is an add-on service

that allows realtime ltering of malicious Internet content as it

enters the network. Select Cong | AppliFilter and make sure

that the Enable AppliFilter Service check box, at the bottom

of the screen, is enabled.

Activate the Data Leakage Prevention feature (optional):

eSafe allows reducing the risk of data loss and managing compliance

with its data leakage prevention feature, that identies who is

sending what data where and how. To activate this feature, in the

Policy Settings mode, select Cong | DLP | DLP Settings.

Dene internal networks: eSafe allows dening specic IP

addresses, ranges of networks, and ports for which trafc will

NOT be inspected. In the Policy Settings mode, select Cong |

NitroInspection Conguration.

Dene mail servers: You must dene all the domain names in

your organization and the IP addresses of the internal mail servers

associated with these domains. This list will also be used by

eSafe to identify internal and external mail servers. To dene the

mail servers, select Cong | Email |Mail Settings | SMTP

Internal Domains.

Dene alert recipients: In the Policy Settings mode, click the

Alerts tab and then select the Miscellaneous Parameters

option to dene the sender email address, the outgoing SMTP mail

server address, and the alert subject.

Dene warning messages: For incoming email, a message can

be added to email destined to the sender or recipient. For outgoing

email, a message can be added to email destined to the sender, and

a disclaimer can be dened, if necessary. To dene email warning

messages, select Cong | Email | Warning Messages.

Dene redirect text: When eSafe blocks an HTML page that is

being viewed by a user, it can redirect users to a specic URL that

will display a predened page with a relevant notication message

or display an HTML page with customized text. To dene these

messages, in the Policy Settings mode select the Cong tab and

then select Alerts | URL Filter Warning.

A detailed description of performing these actions appears in the

eSafe SmartSuite Deployment Guide.

Further Information

See the links below for further information on managing and

maintaining your appliance.

Documentation:

The eSafe Deployment Guide is available on the supplied CD or at:

http://www.aladdin.com/support/esafe_documentation.aspx

Support:

For eSafe contact details, please visit:

http://www.aladdin.com/support/esafe-contact-support-intro.aspx

Corporate Headquarters:

4690 Millennium Drive, Belcamp, Maryland 21017 USA

Tel.: +1 410 931 7500 or 800 533 3958, Fax:+1 410 931 7524,

Email: [email protected]

EMEA Headquarters:

Tel.: +44 (0) 1276 608 000, Email:[email protected]

APAC Headquarters:

Tel: +852 3157 7111, Email: [email protected]

For all ofce locations and contact information, please visit

www.safenet-inc.com/company/contact.asp

SafeNet.All other product names are trademarks of their respective owners.

eSafe_QSG.indd 1 8/6/09 1:18:41 PM

Overview

The eSafe XG family is a powerful content security appliance-based

solution.The appliance provides real-time intelligent inspection of

web and/or mail trafc including legitimate sites and web-enabled

applications.The solution was designed with emphasis on high

performance and exible installation, while simplifying management

and control.

This guide will assist you in the initial installation and conguration of

the appliance.

Note: This guide provides details for installing eSafe in Transparent

Bridge mode. For information on all other installation modes, please

refer to the eSafe SmartSuite Deployment Guide available on the

product CD and our website.

Before You Start

Verify that the product box contains all the items listed in the1.

supplied checklist.

You will also need the following:2.

A Windows-based workstation for initial conguration (with IE 6.0 •

or above).

An Ethernet cable to connect the appliance to the workstation.•

Getting Started

Connect the appliance’s management port (highlighted in the image 1.

below) to the workstation using a network cable.

Connect the power cable to the appliance and to a power source.2.

Turn on the appliance and the workstation.3.

Initial Conguration

Note: The appliance’s default IP address is 10.0.0.1/24.

Verify that the workstation’s IP address is in the same subnet as the1.

appliance.

On the workstation, open the browser (IE 6.0 or above) and access

the appliance at https://10.0.0.1:37233. A security alert appears.

Accept the security alert in order to continue.The Login page2.

appears.

(admin), and password (esafe).

The Conguration Wizard will start automatically.

Conguration Wizard

In the1. Welcome screen, click Next to display the License Agreement

screen.

2. Read the License Agreement and click I Accept. Click Next to

display the Choose Product Type screen.

3. Under Choose Product, select the Secured Gateway check box

and then select Web Security Gateway and Mail Security

Gateway if you want to scan SMTP on the machine.

4. From the Choose deployment mode drop-down list, select

Transparent Bridge.

Click Next.

5. Dene the following network settings:

Under• Appliance IP settings, enter the IP address and netmask that

you have assigned to the eSafe Appliance.This must be a valid IP

address from the network/DMZ.

Next to• Default Gateway, enter the IP address of the gateway

device that is used to forward trafc to destinations beyond the

local network.

Select the• Disable High Availability NIC features check

box if you do not want to allow the fail open feature when the

appliance is down.

The• Reset unused interfaces option is enabled by default

and clears all NIC information. (It is especially useful when

reconguring the appliance.)

Under• Name Resolution, enter the hostname of the eSafe

Appliance to enable identication of the appliance in the

network, and the IP addresses of the DNS servers in the network

that will be used to resolve machine names.

Under• SMTP Client Identication, dene the string the appliance

will use for identication purposes when communicating with

SMTP clients that use the helo command.

Click Next to display the Password screen.

6. In the Password screen, change the appliance’s default username and

password. You will also be prompted to change the root password.

Click Next to display the Set Time and Date screen.

7. Dene the current date and time, and the time zone in which the

appliance will operate. Click Next to display the Services screen.

8. Select the services you wish to activate and then click Next to

continue. The Finish screen appears.

9. Click Apply and Shutdown. The appliance is now ready for

connection to the network.

10.

Install the appliance in its designated physical location using the supplied

rack rails, and connect the appliance to the power supply and network.

11.Turn on the appliance. Note that, once connected to the Internet, a

30 day evaluation license will automatically be activated.

12. Make sure that the rewall allows the new eSafe appliance to

access the Internet via HTTP and HTTPS, allows access to the

DNS, and allows SMTP (for sending and accepting email).

Running the eSafe Security Center

Management Console

1. On the administration workstation/server, install the eSafe Security

Center management application from the product CD (double

click on /Setup/esg_gui.exe) or via the Appliance Manager (select

Support | eSafe Security Center).

2. Run the Security Center application.

3. In the Connect to eSafe dialog box, enter the appliance’s management

IP address in the Connect to Host eld, and click OK.

4. Dene the password and click OK to ne tune the conguration to

suit the needs of your network.

It is recommended that this string is the same as the appliance name.

XG-210

MNG

LAN

XG-300

START

GUIDE

Quick

eSafe_QSG.indd 2 8/6/09 1:18:45 PM

This manual suits for next models

Table of contents

Other SafeNet Security System manuals

SafeNet

SafeNet eToken 7300 Guide

Popular Security System manuals by other brands

Polon-Alfa

Polon-Alfa 4000 Installation and maintenance manual

Nexcom

Nexcom NViS 14162 Series user manual

Eminent

Eminent EM8670 Quick install

urmet domus

urmet domus alpha 1060 INSTALLATION AND USE BOOKLET

SmartPool

SmartPool YardGuard YG03 manual

DSC

DSC PC5964 Mounting instructions

Secure

Secure USAB-1 operating instructions

B&B

B&B 480 SERIES Operation & maintenance manual

ADEMCO

ADEMCO VISTA-20P Series Installation and setup guide

Inner Range

Inner Range Concept 2000 user manual

Johnson Controls

Johnson Controls PENN Connected PC10 Install and Commissioning Guide

Aeotec

Aeotec Siren Gen5 quick start guide

Swann

Swann SW-P-MC2 Specifications

Ecolink

Ecolink Siren+Chime user manual

EDM

EDM Solution 6+6 Wireless-AE installation manual

Siren

Siren LED GSM operating manual

Detection Systems

Detection Systems 7090i Installation and programming manual

FRIEDLAND

FRIEDLAND MA10 Installation and operating instructions

SafeNet eSafe XG-210 User manual

Popular Security System manuals by other brands