Filtering web traffic is a complex process. The key features of Web Gateway contribute to this process in different ways using suitable functions.
- Intercepting web traffic — Intercepting web traffic is a prerequisite for any filtering. It is accomplished by the proxy functions of Web Gateway, which can be performed for different network protocols, such as HTTP, HTTPS, HTTP2, FTP, XMPP, and others.
Depending on what you configure, Web Gateway runs in explicit proxy mode, High Availability (HA) proxy mode, or in a transparent mode.
- Authentication — The authentication functions of Web Gateway check the authorization of users, relying on information from internal and external databases and using authentication methods such as NTLM, LDAP, RADIUS, Kerberos, and others.
- Web filtering — The web filtering functions of Web Gateway include the anti-malware functions, which scan and filter web traffic and block access to web objects that are infected.
Other functions filter URLs that users request access to, using information from the Skyhigh Security Global Threat Intelligence system, or perform media type and application filtering.
The filtering functions are supported by functions that complete such jobs as counting user requests for web access or indicating the progress made in downloading web objects.
- Monitoring — The monitoring functions of Web Gateway provide a comprehensive and continuous overview of the filtering process.
They include a dashboard, which displays information on alerts, web usage, filtering activities, and system behavior, as well as logging and tracing functions.
Options to get external components involved in the monitoring process, for example, Trellix ePO or an SNMP agent, are also provided.