McAfee Web Gateway 7.2.0 release announcement

McAfee Web Gateway 7.2.0 is available for download and update

  • Do you need to apply Data Leakage Prevention controls to your web traffic?
  • Do you need to import your own list into web gateway?
  • Would you like to use ePO to administrate the policy content?
  • Are you looking for an easier way to create your rules?
  • Do you need to secure your road warriors' web traffic?
  • Do you need to control the SaaS and on premise policy from within a single console?



McAfee Web Gateway has great success by satisfying our customer needs due to its unmatched feature set, including GTI enabled Gateway Antimalware, GTI enabled URL Filtering, SSL Scanning, and flexible deployment options.


With the release of McAfee Web Gateway 7.2.0 McAfee is releasing functionality on Web Gateway to apply DLP controls to web traffic. The product includes a specialized Data Leakage Prevention (DLP) engine, which is allowing for categorizing content into predefined Categories. It furthermore allows for creating custom dictionaries.


The concept of Subscribed Lists allows our customer to import their own lists into Web Gateway based on a schedule, similar to our URL Filter updates. McAfee also provides a collection of predefines lists to customers introducing a service in which we manage commonly used list data, such as Windows update servers, Citrix GoTo Meeting, etc. for our customers to be used in their policy.


The Common Catalog enables Web Gateway to retrieve list data from ePO. This allows to create a common set of lists between products and technology using Common Catalo and simply enables our customer to use ePO to manage aspects of the MWG policy content.


To ease the policy creation version 7.2 introduces a new rule criteria builder to allow for an in context editing and creation of rules including guidance to best properties, operators and values or lists.


With release of McAfee Web Gateway 7.2, McAfee releases a concept known as Web Hybrid, which enables our customers to secure their web traffic regardless of location. It combines Web Reporter, the Web Protection Service (WPS) and McAfee Web Gateway into a single solution. McAfee Client Proxy (MCP) is enabling organization of all sizes to detect that a corporate laptop is operating outside the corporate network and the protection by Web Gateway is no longer available. MCP will redirect traffic to WPS in this case.


As part of Web Hybrid, McAfee Web Gateway now allows administration of the SaaS policy from within the Web Gateway console and, as additional benefit, allows creating a common policy between SaaS and on premise appliances.


The release of Web Gateway 7.2 concludes a project known as Titanium, which includes all features of its previous iterations MWG 7.1.5 and MWG 7.1.6.


As this release combines all features of the project into a single release, it offers:


  • DLP based on predefined categories and the ability to create customer dictionaries to control traffic for confidential data or to enforce regulatory
  • Subscribed Lists to import lists from external sources based on a schedule to enable customers to manage these lists in different systems.
  • Common Catalog to share list data with other products and enabling administrators to manage the policy content of MWG within ePO
  • New rule creation dialog for in context creation and editing of rules.
  • Web Hybrid to enable our customer to apply we security to their traffic regardless of location, including common policy and common management from a single administration console.
  • All other features from the previous iteration of the Titanium project
  • Application Control based on the AppPrism database, with over 700 unique applications and functions, grouped into 28 categories including dashboard representation of Application statistics. With Application Control, administrators can elect to deny specific applications, such as uploading photos to Facebook, communicating via instant messaging on Yahoo! or updating a personal profile on LinkedIn, while still allowing access to the primary websites for business purposes. 
  • External Lists to connect to and retrieve policy list content from outside of Web Gateway during runtime.
  • REST interface as XML based API to tie Web Gateway into external management systems such as policy automation tools, help desk systems, etc. and to create additional functionality around Web Gateway if needed.
  • ICAPS to secure ICAP connections with SSL encryption.
  • Avira as native integration into Web Gateway with optimized data flow between McAfee Gateway Antimalware and the Avira 3rd party engine. Previously Avira was part of the GWAM SDK, whereas now this is integrated as 3rd party engine directly into Web Gateway. The implementation is now corresponding to the one in MWG 6.9.
  • Several usability enhancements:
  • 'User Preferences' to set options for the current admin user and to change the password
  • 'Discard Changes' to discard all changes since the last save of the policy
  • 'Reset Dashboard' to clean all dashboards
  • XMPP Proxy to intercept and monitor chat communication for XMPP enabled applications, such as Facebook Chat or Google Talk.
  • Web Gateway NTP service to ease the setup of new appliances in clusters by making sure that all new installations using this version and later are set up with the correct time to avoid central management and logging issues.
  • Hardware support for the M3, M7 chassis and G6, G6.5 blades.
  • Proxy Tunnel Event to enable non RFC compliant but business critical sites to send data through Web Gateway.
  • Administrator and user authentication with client certificates to allow user to use smart cards, tokens or any other source of certificates to access the administration console.
  • McAfee Client Proxy authentication support for user identification while MCP redirects traffic to Web Gateway.
  • Security of mobile devices, which provides a secure access from devices running iOS (Apple’s iPhone/iPad) and Android to the Internet and to selected Intranet sites.
  • Bandwidth throttling to enable MWG to control the rate at which it accepts data, in order to control via policy the download and upload speed of different types of web content.
  • Timers in the product to measure delays on all stages, which enhances MWG's functionality with timers, which measure delay on all stages and allow to analyze where delays happen and improve troubleshooting.
  • IP-spoofing to support retention of the original client ip on the outgoing connection for explicit proxy modes.




Customers on the main release branch (MWG 7.1.0.x) are advised to wait until 7.2 becomes GA in one of the next maintenance releases and is available as direct upgrade from within the main release branch. Customers on the controlled release branch (MWG 7.1.5.x/7.1.6.x) will receive this update as part of their chosen controlled release branch.


An announcement via SNS will be sent on May 3rd.

Best regards,

The McAfee Web Gateway product team