TrustPort Net Gateway Email traffic protection Advantages of centralised email protection • Entry point protection – Clear separation of the risky internet and.
Download ReportTranscript TrustPort Net Gateway Email traffic protection Advantages of centralised email protection • Entry point protection – Clear separation of the risky internet and.
TrustPort Net Gateway Email traffic protection Advantages of centralised email protection • Entry point protection – Clear separation of the risky internet and secured intranet – Malware and spam blocked before reaching endpoints – No need to remove threats individually on every computer • Unified security concept – Compact user interface – Remote control of the solution possible – Easy analysis of traffic and incidents WWW.TRUSTPORT.COM Keep It Secure Handling email traffic WWW.TRUSTPORT.COM Keep It Secure Firewall TrustPort Net Gateway Mail server Firewall TrustPort Net Gateway Mail server Principal components of incoming email protection Receiving SMTP server Backup of messages Antivirus and antispam kernel WWW.TRUSTPORT.COM Keep It Secure Sending SMTP server Receiving SMTP server • • • • • WWW.TRUSTPORT.COM Keep It Secure Antispam shield Blacklists and whitelists DNS records Greylisting Autowhitelist Receiving SMTP server TrustPort Net Gateway WWW.TRUSTPORT.COM Keep It Secure Antispam shield Basic whitelist and blacklist *@company.com *@company.cz [email protected] [email protected] [email protected] [email protected] *@company.net *@company.org LDAP AD Text WWW.TRUSTPORT.COM Keep It Secure Blacklists and whitelists Blacklist of banned servers Blacklist of banned senders Whitelist of trusted recipients Whitelist of trusted senders Whitelist of trusted servers Exceptions WWW.TRUSTPORT.COM Keep It Secure Greylisting From: TrustPort Net Gateway To: IP: WWW.TRUSTPORT.COM Keep It Secure Backup of messages • Criteria for the rules – – – – direction sender recipient IP address range • Action to follow – forward – backup – delete WWW.TRUSTPORT.COM Keep It Secure Antivirus and antispam kernel Fully adjustable by the user Partially adjustable by the user • Scanning by multiple antivirus engines • Filtering out unwanted attachments • • • • Checking DKIM, SPF Checking DNS blacklists Forbidden words User regulars • Database of regular rules • Checking for image spam • Bayes analysis • Point evaluation WWW.TRUSTPORT.COM Keep It Secure Antivirus and antispam kernel User filters • Forbidden words credit free offer viagra + 10 000 • Regular rules Part: headers Field: from Regular: @company.com Part: body Regular: (free|share)ware WWW.TRUSTPORT.COM Keep It Secure - 5000 + 2000 Using DKIM Generating hash of the message Decrypting the electronic signature WWW.TRUSTPORT.COM Keep It Secure Using SPF HELO: MAIL From: IP: IP: IP: IP: WWW.TRUSTPORT.COM Keep It Secure Bayes analysis Spam dictionary spam User rules Bayes analysis ham Regular rules Ham dictionary Updates WWW.TRUSTPORT.COM Keep It Secure Sending SMTP server • Sending electronic mail to one target mail server – Fixed IP address • Sending electronic mail to several target servers – Delivery table – MX records – Delivery table combined with MX records WWW.TRUSTPORT.COM Keep It Secure Components of outgoing email protection Sending SMTP server Antivirus kernel Receiving SMTP server WWW.TRUSTPORT.COM Keep It Secure Components of outgoing email protection Receiving SMTP server • sender control based on computer address Antivirus kernel • scanning using selected engines Sending SMTP server • adding to autowhitelist WWW.TRUSTPORT.COM Keep It Secure • sender control based on email address • whitelist of trusted senders • filtering out unwanted attachments • truncating dangerous headers • sending out Sending SMTP server Autowhitelist From: peter.jones@ company.com From: joe.davis@ gmail.com To: joe.davis@ gmail.com To: peter.jones@ company.com WWW.TRUSTPORT.COM Keep It Secure Thank you for your attention!