background image

Yoggie Management Console 

Advanced Security Settings 

 

User Guide 

|  

59

 

 

 

4.  Select the checkboxes of the protocols you want Gatekeeper Card Pro to scan. 
5.  Select the checkbox of the Security Engine you want Gatekeeper Card Pro to use: 

 

 

Select Mailshell if you want to activate spam mail checks.  

 

 

Select Yoggie`s patent-pending L-8 Security Agent if you wish to activate 

Layer-8 protection.  

6. Click 

Apply

.  

Gatekeeper Card Pro scans the protocols according to the specified settings. 

Configuring IDS/IPS 

Gatekeeper Card Pro features IDS/IPS protection. In this advanced configuration 
option you can specify the security policies for each activity. 

  To configure IDS/IPS protection: 

1. Click 

Settings

 in the 

Navigation

 pane of the Management Console. 

The 

Security

 tab appears in the 

Display

 pane. 

2. Click 

Advanced

.  

3. Click 

IDS/IPS

The 

IDS/IPS Policy

 screen appears. 

Summary of Contents for GATEKEEPER CARD PRO

Page 1: ...www yoggie com...

Page 2: ...mitted by Yoggie Security Systems Ltd in the Terms of Use Agreement The technology and products described in this material are protected by registered and or pending patents of Yoggie Security Systems...

Page 3: ...ON AND REGISTRATION 10 YOGGIE MANAGEMENT CONSOLE 15 ACCESSING THE MANAGEMENT CONSOLE VIA THE GATEKEEPER CARD PRO ICON 15 MANUALLY ACCESSING THE MANAGEMENT CONSOLE 17 CHANGING THE INTERFACE LANGUAGE 18...

Page 4: ...s 41 Creating Custom E mail Rules 41 Changing the Order in which E mail Rules are Applied 43 Modifying Activating Deactivating and Deleting E mail Rules 43 ADVANCED SECURITY SETTINGS 45 Web Filtering...

Page 5: ...About this User Guide Gatekeeper Card Pro Features User Guide 5 About this User Guide This User Guide provides installation and usage instructions for the Gatekeeper Card Pro...

Page 6: ...comprehensive security solution for known and unknown threats These solutions include Adaptive Security Policy Multi Layer Security Agent Layer 8 Security Engine URL Categorization and Filtering Anti...

Page 7: ...Gatekeeper Card Pro unit is connected to a Yoggie Management Server The Yoggie Management Server extends the IT manager s ability to manage and enforce security on traveling laptops Installed in the...

Page 8: ...to the laptop If the Gatekeeper is physically disconnected from the laptop during use all network connections are automatically and immediately terminated Gatekeeper Card Pro icon located in the Wind...

Page 9: ...Introduction Package Contents User Guide 9 Package Contents Gatekeeper Card Pro Gatekeeper Card Pro CD Quick Start Guide System Requirements ExpressCard slot and PC running Windows XP or Vista 32bit...

Page 10: ...to install a driver Click Cancel to exit the driver installation wizard Driver Installation and Registration It is recommended to disable any software based Firewall or Internet protection suites 1 In...

Page 11: ...and Registration User Guide 11 4 Select your preferred language from the drop down list and click Next The End User License Agreement EULA screen appears 5 Read the EULA and click I Accept to proceed...

Page 12: ...of the following If your laptop will be connected to the Yoggie Management Server YMS select the Corporate Mode setup option If your laptop will not be working with the Yoggie Management Server select...

Page 13: ...on the CD sticker Standalone Mode only Settings for your corporate Yoggie Management Server IP address and password Corporate Mode only 9 Click Next The Privacy screen appears 10 Set your desired pri...

Page 14: ...otification area and Gatekeeper Card Pro is now protecting your laptop Take Gatekeeper Card Pro for a test drive Download EICAR s virus demo file from http www eicar org anti_virus_test_file htm Gatek...

Page 15: ...keeper Card Pro driver software is installed see Getting Started Web browser if for some reason the Gatekeeper Card Pro icon is not available you can manually access the Management Console through a s...

Page 16: ...ng the Management Console via the Gatekeeper Card Pro Icon 16 Gatekeeper Card Pro Password enter your Gatekeeper Card Pro password the default password is yoggie 4 Click OK The Management Console open...

Page 17: ...ally accessed by entering the Gatekeeper Card Pro Management Console URL into the address field of your Web To manually access the Management Console 1 Open a Web browser and enter the following Gatek...

Page 18: ...ars 4 Select the language you wish to use from the list 5 Click Apply The selected interface language will be used and the main Yoggie Details page appears Changing Your Password You can change your G...

Page 19: ...e E mail Address field as required 6 Click Apply Your user details are changed and the Yoggie Details page appears Changing Modes Gatekeeper Card Pro can be used as a standalone Gatekeeper standalone...

Page 20: ...email with Yoggie 5 Select your privacy setting from the drop down list You may choose one of the following options Share security logs with Yoggie share all the security events collected by the Gate...

Page 21: ...can view the following Current security status Security activity charts including 3D charts Security and system logs You can also view and print security activity reports Viewing Security Status The S...

Page 22: ...ll attacks that took place over the last 15 minutes IDS IPS Events displays the number of attempted security breaches detected and defeated by the Intrusion Detection System Intrusion Protection Syste...

Page 23: ...o navigate through the charts view them in 2D replay animations and print them To view reports 1 Click Reports in the Navigation pane of the Management Console The main chart page of the Charts tab ap...

Page 24: ...on attempts Spam displays the e mail spam distribution score the number of e mail messages that are likely to be spam 2 In the Charts tab click a chart to display it in 3D as shown in the example belo...

Page 25: ...e Management Console The main chart page of the Charts tab appears in the Display pane 2 Click the Security Log tab The security log is displayed as shown below 3 To display the details of an event cl...

Page 26: ...gement Console Monitoring Security Activity 26 Gatekeeper Card Pro 6 Navigate to the location where the compressed security log file will be saved on your PC and click Save The log file is saved to yo...

Page 27: ...e of the Charts tab appears in the Display pane 2 Click the System Log tab The system log is displayed 3 Click the right left arrow buttons to navigate to subsequent previous System Log pages as requi...

Page 28: ...Yoggie Management Console Monitoring Security Activity 28 Gatekeeper Card Pro 3 Click the right left arrow buttons to navigate to subsequent previous VPN Log pages as required...

Page 29: ...ended policy It provides the recommended level of security while maintaining functionality Low Policy least secure policy This policy provides minimal security while providing maximum functionality To...

Page 30: ...ternet through a Proxy Server this server must be defined in the Yoggie Management Console Configuring Internal Network Settings You can change your internal network settings as needed To configure In...

Page 31: ...field enter the new device subnet mask 6 Click Apply Configuring Proxy Settings If you connect to the Internet using a proxy server you must configure basic settings To configure Proxy Settings 1 Clic...

Page 32: ...he Proxy Settings page appears 4 Select Manual proxy configuration 5 In the HTTP Proxy field enter the web address of the proxy server 6 In the Port field enter the port number on which the proxy serv...

Page 33: ...ss than the standard MTU which is 1500 Gatekeeper Card Pro must be configured to the same MTU as Windows Web Filtering RPC Mode Some firewalls restrict access to UDP port 9020 which is used by Gatekee...

Page 34: ...ard Pro 3 Click Advanced The Additional Settings page appears 4 To change the MTU check the Custom MTU checkbox and enter the new MTU default is 1500 bytes Start at 1400 MTU and then try lower numbers...

Page 35: ...the VPN connection select VPN Connection Disabled To enable the VPN connection click VPN Connection Enabled A confirmation message is displayed 4 Click OK The VPN Status displayed below the two option...

Page 36: ...reen appears 3 In the VPN Type drop down list select one of the following VPN Types NetASQ Juniper Zywall P1 IPCop Generic 4 In the Connection Type field select one of the following connection types I...

Page 37: ...ficate and click Browse to select and upload the certificate file 13 The default VPN settings use the DES algorithm for encryption and SHA1 message digest for authentication However you can set the en...

Page 38: ...subnet mask 7 In the User Name and User Password fields enter your VPN user name and password 8 In the Certificate field click the Browse button to select and upload the certificate file 9 Click Apply...

Page 39: ...P to work properly in Port Address Translation PAT environments 9 Click Apply Spam E mail Protection Settings Spam is unsolicited e mail often of a commercial nature sent indiscriminately to multiple...

Page 40: ...es two spam header files which can be found in the message source and include the following information X Yoggie SpamLevel Indicates Spam Probably Spam Phishing or empty if not spam X Yoggie SpamScore...

Page 41: ...ears in the Display pane 2 Click the Email tab The Email Settings screen appears 3 If you want Gatekeeper Card Pro to tag subject lines of suspicious spam e mails select the Tag Subject lines of suspi...

Page 42: ...orm if the condition is met Allow Does nothing to the e mail generally used to create exceptions to other rules Tag with Tags the message with the text you enter in the text box 5 Click OK The rule is...

Page 43: ...them when they are no longer needed You can also temporarily deactivate a rule To modify a Custom E mail Rule 1 Double click the rule you want to modify The Custom Web Rules dialog box appears 2 Edit...

Page 44: ...us button The rule is deleted from the rule list 3 Click Apply The deletion is saved Deleting a rule removes it from the rule list but the deletion is saved only when you click Apply Therefore if you...

Page 45: ...nti spyware Anti spam anti phishing web filtering etc on different incoming communication protocols This advanced configuration option enables you to enable or disable application level scanning of ce...

Page 46: ...checkbox to enable web filtering 5 Select the checkbox of the categories you wish to filter To select all categories click Block All To clear all categories click Allow All 6 Click Apply To add a Cus...

Page 47: ...field enter a descriptive name for the rule 4 In the If the following condition is met section define the condition under which action will be taken 5 In the Perform the following action section selec...

Page 48: ...og box appears 2 Edit the relevant fields 3 Click OK 4 Click Apply The selected rule is modified Edits to a rule are saved only when you click Apply Therefore if you attempt to move to another screen...

Page 49: ...l receive a warning that you must first save your work Configuring Firewall Settings Gatekeeper Card Pro can block unwanted inbound and outbound traffic using the following methods Direction Method De...

Page 50: ...table ports to be used The following precedence convention is applied When there are two or more rules a rule positioned higher in the list takes precedence over lower ones Rules override i e take pre...

Page 51: ...s checked in the Whitelist except as specified in the Rules in the bottom portion of the screen The Whitelist overrides the Blacklist thus when the Whitelist is checked it does not matter whether the...

Page 52: ...Yoggie Management Console Advanced Security Settings 52 Gatekeeper Card Pro The firewall screen appears 4 Click the blacklist link The Blacklist screen opens...

Page 53: ...t Blacklist settings are ignored if a Whitelist is used See the procedure above to enable disable Blacklist based blocking To modify the Whitelist 1 Click Settings in the Navigation pane of the Manage...

Page 54: ...o be blocked 6 Click Apply The security policy is set See the procedure above to enable disable Whitelist based blocking To create and sequence Firewall Rules 1 Click Settings in the Navigation pane o...

Page 55: ...log appears 5 Specify the following Rule components Direction Inbound or outbound traffic Remote IP address For Inbound traffic select Any or select the option below Any and enter the IP address of th...

Page 56: ...s added to the list 7 Repeat the above steps for all Rules you wish to define For example you can create several blocking Rules and then add one at the end that blocks all other traffic 8 To re sequen...

Page 57: ...click Apply Therefore if you attempt to move to another screen in the Gatekeeper Card Pro Management Console before clicking Apply you will receive a warning that you must first save your work Size P...

Page 58: ...files from the web according to the specified settings Configuring Protocol Scanning Gatekeeper Card Pro uses application layer scanners and engines Anti virus Anti spyware Anti spam Anti phishing Web...

Page 59: ...Security Agent if you wish to activate Layer 8 protection 6 Click Apply Gatekeeper Card Pro scans the protocols according to the specified settings Configuring IDS IPS Gatekeeper Card Pro features IDS...

Page 60: ...select one of the following settings from the drop down list Allow Gatekeeper Card Pro allows this activity and does not log it Log Gatekeeper Card Pro allows this activity and logs it Block Gatekeep...

Page 61: ...d save a support file that contains all Gatekeeper Card Pro logs configuration data and other relevant information This file can then be sent to a Yoggie support expert for analysis To generate a supp...

Page 62: ...o which you want to save the support file and click Save Reset Options You may need to reset logs and counters for troubleshooting To reset device counters 1 Click Support in the Navigation pane of th...

Page 63: ...stic test during a support session General Diagnostics runs diagnostic tests on Gatekeeper Card Pro s security applications Network Diagnostics runs a ping and a trace test Virus Test As part of this...

Page 64: ...ostics 64 Gatekeeper Card Pro 3 In the General Diagnostics section click the Run button The general diagnostics dialog opens with results of the various tests 4 After reviewing the results of the test...

Page 65: ...pport in the Navigation pane of the Management Console The main Support page appears 2 Click the Diagnostics tab 3 In the Network Diagnostics section enter the IP Address or computer name in the field...

Page 66: ...Support Diagnostics 66 Gatekeeper Card Pro 5 To perform a trace enter the IP Address or computer name in the field next to the Trace button 6 Click Trace A window opens and the trace is performed...

Page 67: ...st file 1 Click Support in the Navigation pane of the Management Console The main Support page appears 2 Click the Diagnostics tab 3 In the Virus Test section click the Virus Test button The file is d...

Page 68: ...Card Pro protection is disabled Disabling Gatekeeper Card Pro Enforcement To disable Gatekeeper Card Pro protection 1 Right click the Gatekeeper Card Pro icon in the notification area 2 Select Disable...

Page 69: ...The Change Password dialog box opens 3 Enter the current disable password in the Current Password field 4 Enter the new disable password in the New Password field 5 Enter the new disable password onc...

Page 70: ...d Pro can be uninstalled at any time To uninstall the Gatekeeper Card Pro 1 From the Start menu select Programs Yoggie Uninstall Yoggie The Uninstall wizard opens 2 Enter the uninstall password in the...

Reviews: