Beruflich Dokumente
Kultur Dokumente
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 1
AGENDA
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 2
BLUENET BLUECOAT PRODUCTS
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 3
PRODUCT LIST
Blue Coat K9
Blue Coat Director
Proxy Client
Packetshaper
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 4
BLUE COAT SG APPLIANCE
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 5
BLUE COAT AV
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 6
BLUE COAT AV DEPLOYMENT
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 7
WHAT IS DIRECTOR?
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 8
DIRECTOR DEPLOYMENT
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 9
BLUE COAT REPORTER
Schedule reports
At a specific time, periodically, or in real time
Export reports
In HTML by scheduled e-mails
In Excel-compatible format
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 10
BLUE COAT WEBFILTER
Hybrid Solution
Onbox database for Blue Coat SG
Optional service to categorize unrated URLs
Data Quality
About 71 categories
More than 50 languages
Consistency
Priority to most frequently requested resources
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 11
BLUE COAT SG
DEPLOYMENT
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 12
DEPLOYMENT OPTIONS
Explicit Proxy
Clients know there is a proxy in the path
Transparent Proxy
Clients do not know there is a proxy in the path
Reverse Proxy
Protects a web server from clients on the internet
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 13
EXPLICIT PROXY
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 14
TRANSPARENT PROXY
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 15
EXPLICIT: MANUALLY CONFIGURED
Firewall Rules
Source Destination Action
172.16.0.100 ANY ALLOW
172.16.1.10 25 ALLOW
ANY ANY DENY
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 21
EDGE DEPLOYMENT
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 22
REVERSE PROXY
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 23
ACCELERATING WEB CONTENT
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 24
SECURING CORPORATE CONTENT
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 25
MIXED DEPLOYMENT
3
5
2
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 26
BLUECOAT SG
INITIAL SETUP
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 27
INITIAL SETUP ACCESS
Serial Console
Easy and reliable
LCD / Keypad
A built-in interface for proxy configuration (most models)
TCP/IP
Access reserved site https://proxysg.bluecoat.com:8083
Blue Coat SG200-X in bridging mode only
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 28
SERIAL ACCESS SETUP
Press the Esc key to exit the Wizard without saving any
changes
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 29
PASSWORD LEVELS
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 30
FEATURES REQUIRING LICENSING
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 31
LICENSING INSTALLATION OVERVIEW
Log in to WebPower
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 32
HANDS-ON SECTION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 33
BLUECOAT SGOS
GRAPHICAL USER INTERFACE
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 34
MANAGEMENT CONSOLE CONFIGURATION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 35
MANAGEMENT CONSOLE
MAINTENANCE
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 36
MANAGEMENT CONSOLE STATISTICS
Statistics include
System usage
HTTP/FTP, CIFS, MAPI, and byte-caching history
Resources
Efficiency
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 37
HANDS-ON SECTION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 38
SERVICE FRAMEWORK
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 39
SERVICES TYPES
Proxy Services
Matches TCP ports to proxy types
Can be set to Bypass or Intercept
Console Services
Services Blue Coat SG administration
Can be Enabled or not
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 40
PROXY SERVICES LISTENER FEATURES
Destination Address
Defines the host or hosts to be intercepted by the proxy service
Multiple listeners can be defined for a proxy service
Modes: All, Transparent, Explicit, Destination
Port Range
Defines a port or port range to be intercepted by the service.
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 41
PROXY SERVICE ACTIONS
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 42
PROXY SERVICE ATTRIBUTES
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 43
SERVICES ATTRIBUTES
Attribute Description
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 45
CONSOLE SERVICES
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 46
HANDS-ON SECTION
Configuring Services
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 47
WEB FILTERING
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 48
CONTENT FILTERING LOGICAL FLOW
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 49
CATEGORIZATION TECHNIQUES
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 50
BLUE COAT WEB FILTER
Hybrid Solution
Onbox database for Blue Coat SG
Optional Service Component to categorize unrated URLs
Data Quality
Granular Categories
Consistency
Relevant URLs (feedback)
Immediate coverage for new sites (DRTR)
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 51
BLUE COAT WEBFILTER DETAILS
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 52
DYNAMIC CATEGORIZATION OVERVIEW
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 53
BLUE COAT WEBFILTER SERVICE POINTS
sp.cwfservice.net
DNS
Sacramento
London
Salt Lake City
Tokyo
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 54
BCWF COMPLETE WORKFLOW
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 55
LOCAL DATABASE
Custom Categories
Custom allowed list
Customer denied list
Internal URLs
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 56
HANDS-ON SECTION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 57
HANDS-ON SECTION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 58
POLICY MANAGEMENT
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 59
COMPANY POLICY ENFORCEMENT
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 60
DEFAULT POLICY
Deny
Default option for Blue Coat SG
All network traffic received by the proxy is blocked
Allow
Network traffic is allowed through the proxy
Other policies can deny selected traffic
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 61
VPM OBJECTS
Trigger Objects
Source
Destination
Service
Time
Action Objects
Action
Track
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 62
POLICY TRANSLATION
XYZ Inc. employees may not visit the BBC Web site at
any time.
Simple Language
Who Where How When What
XYZ Employees BBC On web At any time May not visit
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 63
POLICY TRANSLATION
Simple Language
Who Where How When What
XYZ Employees Travel On web At any time May not visit
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 64
POLICY TRANSLATION
Simple Language
Who Where How When What
Engineering Gaming On web M-F, 08-17 May not visit
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 65
XYZ INC. WEB ACCESS POLICY
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 66
VPM RULES PRIORITY
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 67
VPM POLICY LAYERS
Forwarding
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 68
VPM LAYERS PRIORITY
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 69
HANDS-ON SECTION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 70
AUTHENTICATION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 71
AUTHENTICATION AND SECURITY TYPES
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 72
BLUE COAT SG SECURITY
Role-based security
Use realm-based authentication
Granular permission selection
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 73
AVAILABLE SECURITY MEASURES
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 74
AUTHENTICATION
Granular Reporting
Manage Exceptions
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 75
EXPLICIT PROXY AUTHENTICATION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 76
EXPLICIT PROXY AUTHENTICATION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 77
AUTHENTICATION OPTIONS
Force Authenticate
Authenticate
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 78
REMOTE RESOURCES AUTHENTICATION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 79
AUTHENTICATION REALM
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 80
AUTHENTICATION REALMS
IWA
Windows NT Domains and Active Directory
LDAP
Active Directory and other LDAP Databases
Sequence
List of authentication realms to be processed
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 81
IWA REALM
Basic Credentials
Username and password are sent base64 encoded
Least secure option
NTLM Credentials
Uses the Microsoft proprietary authentication
Medium security option
Kerberos Credentials
Uses Microsoft implementation of M.I.T Kerberos v5
Highly secure option
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 82
NTLM AUTHENTICATION
Widely used
Prevalence of Windows OS on desktops
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 83
NTLM AUTHENTICATION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 84
BCAAA
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 85
NTLM AUTHENTICATION OVER HTTP
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 86
HANDS-ON SECTION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 87
LDAP REALM
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 88
LDAP DIRECTORY INFORMATION TREE
DC=BlueCoat
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 89
LDAP DISTINGUISHED NAME
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 90
HANDS-ON SECTION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 91
SEQUENCE REALM
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 92
SEQUENCE AUTHENTICATION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 93
ACCESS LOGGING
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 94
ACCESS LOGGING
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 95
ACCESS LOGGING
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 96
PROTOCOLS SUPPORTING ACCESS LOGGING
HTTP SOCKS
ICP Telnet
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 97
PROTOCOLS AND DEFAULT LOGS
Instant Messaging im
Peer-to-Peer p2p
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 99
SUPPORTED LOG FORMATS
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 100
UPLOAD LOGS
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 101
CONTINUOUS UPLOAD
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 102
PERIODIC UPLOAD
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 103
LOG FILE ENCODING
Gzip
Text Access Logs
Text
Continuous Periodic
Upload Upload
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 104
HANDS-ON SECTION
Access Logging
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 105
BLUECOAT REPORTER
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 106
REPORTER OVERVIEW
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 107
REPORTER OVERVIEW
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 108
PROFILES
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 109
REPORTER LICENSING
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 110
REPORTER- STANDARD VERSION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 111
REPORTER- ENTERPRISE VERSION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 112
SYSTEM REQUIREMENTS- HARDWARE
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 113
SYSTEM REQUIREMENTS- HARDWARE
4001 - 6000 2 months 4x Xeon(2.8 8 GB Internal Dual 15k RPM/RAID 0 Total amount of Windows XP and 2003
GHz or faster) Channel SCSI compressed servers, Red Hat
logs x 10 Linux
4001- 6000 3 months 4x Xeon (2.8 8 GB Internal Dual 15k RPM/RAID 0 Total amount of Windows XP and 2003
GHz or faster) Channel SCSI compressed servers, Red Hat
logs x 10 Linux
>6000 1 month 4x Xeon (2.8 8 GB Internal Dual 15k RPM/RAID 0 Total amount of Windows XP and 2003
GHz or faster) Channel SCSI compressed servers, Red Hat
logs x 10 Linux
>6000 2 months 4x Xeon (2.8 8 GB Internal Dual 15k RPM/RAID 0 Total amount of Windows XP and 2003
GHz or faster) Channel SCSI compressed servers, Red Hat
logs x 10 Linux
>6000 3 months 4x Xeon (2.8 8 GB Internal Dual 15k RPM/RAID 0 Total amount of Windows XP and 2003
GHz or faster) Channel SCSI compressed servers, Red Hat
logs x 10 Linux
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 114
SYSTEM REQUIREMENTS
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 115
HANDS-ON SECTION
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 116
HANDS-ON SECTION
Real-Time Reporting
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 117
Blue Coat Confidential Internal Use Only Copyright 2013 Blue Coat Systems Inc. All Rights Reserved. 118