Content

McAfee Messaging and Web Security Appliances

McAfee Product Education

Learn how to protect your employees, your network, and critical data against spyware, inappropriate web content, phishing, spam, known viruses, worms, and Trojans. This course is specifically designed for individuals who are implementing McAfee® messaging and web security appliances:

  • McAfee® Secure Messaging Gateway for McAfee messaging and web security for SMTP and POP3
  • McAfee® Secure Web Gateway for McAfee messaging and web security for HTTP, ICAP and FTP
  • McAfee® Secure Internet Gateway combines two products above for McAfee messaging and web security for both web and messaging protocols

Tab Navigation

Course Details

Course Code

TRN-SCM-101-TCL

Duration

3 days

Objectives

  • Recognize and discuss the features of the McAfee messaging and web security 4.2 appliances
  • Understand the different operational modes (transparent and explicit proxy mode) and common implementation designs
  • Physically install and configure 4.2 appliances in a test environment
  • Understand different types of email threats and how to configure the appliances for protection against these threats
  • Understand how 4.2 appliances can prevent unwanted items from entering through HTTP or ICAP
  • Understand and describe the methods of URL filtering within your appliance
  • Understand and configure POP3 and FTP scanning options of your appliance
  • Describe the alerting mechanisms of the 4.2 appliances
  • Understand how to prepare McAfee® ePolicy Orchestrator® for use with your appliance
  • Describe steps to troubleshoot issues like network connectivity, SMTP, HTTP

Prerequisites

n/a

Course Agenda

Day 1

Overview

 

Networking essentials

  • Recognize common protocols and ports
  • Gain familiarity with the concept of a firewall and a DMZ
  • Understand the purpose of firewall rules
  • Have a basic understanding of routing
  • Understand the function of DNS
  • Have a basic understanding of internet communications

Introduction to McAfee messaging and web security appliances

  • Recognize the appliance models
  • Detail the differences between the 3x00 hardware
  • Understand the appliance software platforms and their differences
  • Discuss the features of the McAfee messaging and web security appliances

Implementation details

  • Gather data on existing network and estimate installation impact
  • Understand traffic flow according to operational mode
  • Recognize common implementation designs
  • Understand high availability and scalability options
  • Size the appliance solution appropriately

Basic configuration

  • Physically install an appliance into a lab environment
  • Access the appliance using the configuration menu or a web browser
  • Log on and perform initial configuration
  • Monitor the operation of your appliance and activate optional components
  • Update files on your appliance
  • Activate optional appliance components
  • Understand the concept of policies
  • Lab: Installing and setting up the initial configuration of the appliance

SMTP

  • How to configure the appliance to process email
  • Methods for delivering inbound and outbound email
  • Understand the threats present in email and how to protect against the threats
  • Understand how LDAP is used to provide the basis for policy

Day 2

Overview

 

SMTP (continued)

  • Lab: Anti-relay
  • Lab: Anti-spam functionality
  • Lab: Message digests and message splitting
  • Lab: LDAP configuration and group policies

HTTP and ICAP configuration

  • Understand basic configuration for processing HTTP traffic
  • Describe the differences when processing HTTP traffic transparently or through use of an explicit proxy
  • Understand how the appliance functions as an ICAP server
  • Describe how the appliance can stop unwanted items entering through HTTP or ICAP
  • Lab: Explicit proxy configuration
  • Lab: Status page and data trickling configuration

Internet access control

  • Understand how URL filtering is categorized
  • Describe what access options are available for users
  • Understand how policy-based access can be used to grant access rights to groups
  • Describe the method by which users are identified
  • Describe the methods by which users can be authenticated
  • Lab: LDAP server configuration
  • Lab: Adding an authentication service
  • Lab: Adding policy groups
  • Lab: Testing transparent authentication

FTP and POP3 configuration

  • Understand FTP proxy configuration options
  • Configure FTP clients to work with the appliance
  • Understand FTP proxy implementation on the LAN and DMZ
  • Understand POP3 proxy configuration options
  • Understand the process for scanning both dedicated and generic POP3 connections
  • Lab: POP3 configuration and scanning
  • Lab: FTP configuration and scanning

Day 3

Overview

 

Alerting and reporting

  • Understand alerting mechanisms on your appliance
  • Understand how to limit event retention and purge events
  • Describe how Smart Reporter can be used
  • Understand remote alerting options
  • Describe how to enable transport logging
  • Lab: Managing multiple appliances
  • Lab: Reporting
  • Lab: Quarantine maintenance

McAfee® ePO™ configuration

  • Describe how to prepare ePO for use with your appliance
  • Understand how to create and use ePO policies to manage your appliance
  • Install and remove the ePO agent
  • Report on appliance events through ePO
  • Lab: Preparing the ePO server
  • Lab: Configure appliance policy using ePO policies

Troubleshooting

  • Understand how to back up configuration, log files, and quarantined content
  • Describe steps to troubleshoot network connectivity and configuration issues
  • Recognize and address hardware issues
  • Understand how to use Telnet to troubleshoot problems with SMTP and HTTP

Schedule and Registration

Course registration and schedule