Skip navigation
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams

Web Gateway

4 Posts tagged with the release tag
2
Web Gateway 7.3.0 is now available.

This controlled release offers several new features and usability enhancements including:

 

  • Updated Gateway Anti Malware Engine (v 2012): More intensive emulation of web content, new behavioral exploit detection including heap spray buffer overflow attacks, protection against bot net traffic and detection improvements for PDF malware and FakeAV.
  • Application control engine update:  Detects more sub functionality
  • Redesigned rule library
  • Setup wizard to guide administrators through the setup and install process.
  • McAfee Cloud Identity Manager (MCIM) support: Cloud Identity Manager uses the identity obtained during user authentication on Web Gateway to perform single sign on operations.
  • IFP (Internet Filtering Protocol) support
  • Operating system update to MLOS 2.1

0

McAfee Web Gateway 7.2.0 release announcement

McAfee Web Gateway 7.2.0 is available for download and update

  • Do you need to apply Data Leakage Prevention controls to your web traffic?
  • Do you need to import your own list into web gateway?
  • Would you like to use ePO to administrate the policy content?
  • Are you looking for an easier way to create your rules?
  • Do you need to secure your road warriors' web traffic?
  • Do you need to control the SaaS and on premise policy from within a single console?

 

 

McAfee Web Gateway has great success by satisfying our customer needs due to its unmatched feature set, including GTI enabled Gateway Antimalware, GTI enabled URL Filtering, SSL Scanning, and flexible deployment options.

 

With the release of McAfee Web Gateway 7.2.0 McAfee is releasing functionality on Web Gateway to apply DLP controls to web traffic. The product includes a specialized Data Leakage Prevention (DLP) engine, which is allowing for categorizing content into predefined Categories. It furthermore allows for creating custom dictionaries.

 

The concept of Subscribed Lists allows our customer to import their own lists into Web Gateway based on a schedule, similar to our URL Filter updates. McAfee also provides a collection of predefines lists to customers introducing a service in which we manage commonly used list data, such as Windows update servers, Citrix GoTo Meeting, etc. for our customers to be used in their policy.

 

The Common Catalog enables Web Gateway to retrieve list data from ePO. This allows to create a common set of lists between products and technology using Common Catalo and simply enables our customer to use ePO to manage aspects of the MWG policy content.

 

To ease the policy creation version 7.2 introduces a new rule criteria builder to allow for an in context editing and creation of rules including guidance to best properties, operators and values or lists.

 

With release of McAfee Web Gateway 7.2, McAfee releases a concept known as Web Hybrid, which enables our customers to secure their web traffic regardless of location. It combines Web Reporter, the Web Protection Service (WPS) and McAfee Web Gateway into a single solution. McAfee Client Proxy (MCP) is enabling organization of all sizes to detect that a corporate laptop is operating outside the corporate network and the protection by Web Gateway is no longer available. MCP will redirect traffic to WPS in this case.

 

As part of Web Hybrid, McAfee Web Gateway now allows administration of the SaaS policy from within the Web Gateway console and, as additional benefit, allows creating a common policy between SaaS and on premise appliances.

 

The release of Web Gateway 7.2 concludes a project known as Titanium, which includes all features of its previous iterations MWG 7.1.5 and MWG 7.1.6.

 

As this release combines all features of the project into a single release, it offers:

 

  • DLP based on predefined categories and the ability to create customer dictionaries to control traffic for confidential data or to enforce regulatory
  • Subscribed Lists to import lists from external sources based on a schedule to enable customers to manage these lists in different systems.
  • Common Catalog to share list data with other products and enabling administrators to manage the policy content of MWG within ePO
  • New rule creation dialog for in context creation and editing of rules.
  • Web Hybrid to enable our customer to apply we security to their traffic regardless of location, including common policy and common management from a single administration console.
  • All other features from the previous iteration of the Titanium project
  • Application Control based on the AppPrism database, with over 700 unique applications and functions, grouped into 28 categories including dashboard representation of Application statistics. With Application Control, administrators can elect to deny specific applications, such as uploading photos to Facebook, communicating via instant messaging on Yahoo! or updating a personal profile on LinkedIn, while still allowing access to the primary websites for business purposes. 
  • External Lists to connect to and retrieve policy list content from outside of Web Gateway during runtime.
  • REST interface as XML based API to tie Web Gateway into external management systems such as policy automation tools, help desk systems, etc. and to create additional functionality around Web Gateway if needed.
  • ICAPS to secure ICAP connections with SSL encryption.
  • Avira as native integration into Web Gateway with optimized data flow between McAfee Gateway Antimalware and the Avira 3rd party engine. Previously Avira was part of the GWAM SDK, whereas now this is integrated as 3rd party engine directly into Web Gateway. The implementation is now corresponding to the one in MWG 6.9.
  • Several usability enhancements:
  • 'User Preferences' to set options for the current admin user and to change the password
  • 'Discard Changes' to discard all changes since the last save of the policy
  • 'Reset Dashboard' to clean all dashboards
  • XMPP Proxy to intercept and monitor chat communication for XMPP enabled applications, such as Facebook Chat or Google Talk.
  • Web Gateway NTP service to ease the setup of new appliances in clusters by making sure that all new installations using this version and later are set up with the correct time to avoid central management and logging issues.
  • Hardware support for the M3, M7 chassis and G6, G6.5 blades.
  • Proxy Tunnel Event to enable non RFC compliant but business critical sites to send data through Web Gateway.
  • Administrator and user authentication with client certificates to allow user to use smart cards, tokens or any other source of certificates to access the administration console.
  • McAfee Client Proxy authentication support for user identification while MCP redirects traffic to Web Gateway.
  • Security of mobile devices, which provides a secure access from devices running iOS (Apple’s iPhone/iPad) and Android to the Internet and to selected Intranet sites.
  • Bandwidth throttling to enable MWG to control the rate at which it accepts data, in order to control via policy the download and upload speed of different types of web content.
  • Timers in the product to measure delays on all stages, which enhances MWG's functionality with timers, which measure delay on all stages and allow to analyze where delays happen and improve troubleshooting.
  • IP-spoofing to support retention of the original client ip on the outgoing connection for explicit proxy modes.

 

Note:

 

Customers on the main release branch (MWG 7.1.0.x) are advised to wait until 7.2 becomes GA in one of the next maintenance releases and is available as direct upgrade from within the main release branch. Customers on the controlled release branch (MWG 7.1.5.x/7.1.6.x) will receive this update as part of their chosen controlled release branch.

 

An announcement via SNS will be sent on May 3rd.


Best regards,

The McAfee Web Gateway product team


0
McAfee Web Gateway 7.1.6 has been released

 


McAfee Web Gateway 7.1.6 is available for download and update

 

 

  • Do you need to identify and control Web 2.0 applications?
  • Do you need to manage policy content at an external source?
  • Do you need to automate policy content changes using another system outside MWG?
  • Do you need a the power of 16 2HU appliances in just 10HU?

 

 

McAfee Web Gateway has great success by satisfying our customer needs due to its unmatched feature set, including GTI enabled Gateway Antimalware, GTI enabled URL Filtering, SSL Scanning, and flexible deployment options.

 

With the release of McAfee Web Gateway 7.1.6. we are going a step further an provide the ability to identify Web 2.0 applications and their sub functions as easy as doing URL Filtering. Web Gateway uses the AppPrism database as a comprehensive list of over 700 Web 2.0 applications and sub functions grouped into 28 categories.

 

In this release Web Gateway introduces External Lists, which provide McAfee Web Gateway with the capability to consume policy list data hosted on servers outside of McAfee Web Gateway and to  dynamically query these resources at runtime while processing the policy for a transaction. External Lists allow customers to use web services, locally stored files and LDAP servers as resources for policy data.

 

As a powerful feature behind the scenes, McAfee Web Gateway is now equipped with a REST interface, which provides a XML based API to connect other systems to Web Gateway. These APIs allow control of Web Gateway functionality, such as list creation, list deletion, list modification, log file access, log file operations, system control, etc. By utilizing this API, a customer can control Web Gateway from within other systems, such as policy automation tools, help desk system, etc. and can create additional functionality around Web Gateway if needed.

 

As new hardware platform, McAfee Web Gateway 7.1.6 now supports the Content Security Blade Server as hardware platform and allows installation of the MWG image through the built-in ILO interface .

 

This new release offers:

 

  • Application Control based on the AppPrism database, with over 700 unique applications and functions, grouped into 28 categories including dashboard representation of Application statistics. With Application Control, administrators can elect to deny specific applications, such as uploading photos to Facebook, communicating via instant messaging on Yahoo! or updating a personal profile on LinkedIn, while still allowing access to the primary websites for business purposes. 
  • External Lists to connect to and retrieve policy list content from outside of Web Gateway during runtime.
  • REST interface as XML based API to tie Web Gateway into external management systems such as policy automation tools, help desk systems, etc. and to create additional functionality around Web Gateway if needed.
  • ICAPS to secure ICAP connections with SSL encryption.
  • Avira as native integration into Web Gateway with optimized data flow between McAfee Gateway Antimalware and the Avira 3rd party engine. Previously Avira was part of the GWAM SDK, whereas now this is integrated as 3rd party engine directly into Web Gateway. The implementation is now corresponding to the one in MWG 6.9.
  • Several usability enhancements:
  • 'User Preferences' to set options for the current admin user and to change the password
  • 'Discard Changes' to discard all changes since the last save of the policy
  • 'Reset Dashboard' to clean all dashboards
  • XMPP Proxy to intercept and monitor chat communication for XMPP enabled applications, such as Facebook Chat or Google Talk.
  • Web Gateway NTP service to ease the setup of new appliances in clusters by making sure that all new installations using this version and later are set up with the correct time to avoid central management and logging issues.
  • Hardware support for the M3, M7 chassis and G6, G6.5 blades.
  • Proxy Tunnel Event to enable non RFC compliant but business critical sites to send data through Web Gateway.
  • Administrator authentication with client certificates
  • McAfee Client Proxy authentication support user identification while MCP redirects traffic to Web Gateway.*

*McAfee Client Proxy MCP is a technology that is currently in Beta and is to be released early next year.

 


 

Thanks to all who participated in the release and made this possible.

 

Best regards,

The McAfee Web Gateway product team


0

I am proud to announce that McAfee Web Gateway 7.1 was released to the download sites today, March 30, 2011. This closes a one year long project known as 'Scandium'.

 

 

 

Key Features Summary for project 'Scandium':

 

 

  • FIPS 140-2 – McAfee Web Gateway is currently in the process of being certified under the Cryptographic Module Validation Program for FIPS 140-1 and FIPS 140 –2; please see http://csrc.nist.gov/groups/STM/cmvp/inprocess.html for further detail. The FIPS mode is already available today on every Web Gateway Appliance - For more information on the installation procedure, see the McAfee Web Gateway Quick Start Guide and the Setup and Logon chapter of the McAfee Web Gateway Product Guide.

 

  • SSL Reverse Proxy – SSL connection can now be accepted not only for proxied connections but also for SSL connections, which are redicreted to the proxy. This allows to apply all market leading security controls also to any kind of inbound SSL traffic in addition to plain http only traffic.

 

  • Status and Alerts – As a new feature, this release allows cluster wide monitoring and incident reporting from a single view in the administration interface.

 

  • Kerberos authentication with load balancing– With this release load-balanced Kerberos authentication is possible. Authentication tickets can be issued for the load balancer and validated using the Kerberos authentication method.

 

  • Load balancing for authentication with Windows Domain Controllers – McAfee Web Gateway now measures the responsiveness of AD Controllers and will automatically select the fastest one.

 

  • Proxy Configuration Files – By providing one or more proxy auto-configuration (PAC) files on the appliance, you can support web browsers on clients in finding proxies that enable access to particular web sites.

 

  • Localized end-user messages – End user error messages in different languages are available for upload into MWG 7.1 and can notify users in their local language. In addition to the shipping templates in English language, message texts are available in localized versions, for French, Spanish, German, Japanese, simplified Chinese.

 

Notes: For a detailed  list of all new functionality and enhancements, please consult the release notes.

The update repositories for appliances are updated and are hosting MWG 7.1. Existing Customers requiring access to this release need to add the repository to their update sources. Please consult the release notes for details on this procedure.

 

With best regards,

Michael Schneider, CISSP

Senior Product Manager – Web Security

Content & Cloud Security