What is Netskope Secure Web Gateway?

This guide gives a brief description on the functions and features of Netskope Secure Web Gateway.

Affected Products:

• Netskope

Affected Operating Systems:

• Windows
• macOS
• Android
• iOS

The following are common questions about Netskope Secure Web Gateway.

What function does the Netskope Secure Web Gateway perform?

Netskope Secure Web Gateway enables administrators to steer traffic through the Netskope cloud. Web activity can be distilled into user sites, page visits, and other web activities to analyze usage and protect your enterprise.

What features does Netskope Secure Web Gateway provide?

Web traffic steering

• Use the Netskope Client to steer web traffic for remote and mobile users.
• Use GRE or IPSec to steer web traffic for on-premises users.
• Use Secure Forwarded to steer traffic for on-premises users.
• Use the data plane on Netskope on-premises appliance to steer traffic for on-premises users.

Web classification and filtering

• Web classification and filtering cover 99.9% of active web traffic, with real-time updates of newly categorized URLs
• Acceptable Use Policy (AUP) focused classification covering productivity loss, bandwidth loss, and general loss
• Custom categories and flexible policies by user, group, or location
• 200+ languages supported

Advanced data loss prevention (DLP)

• Real-time protection against sensitive data loss
• 1,000+ file types and 3,000+ data identifiers
• 25+ compliance templates including GDPR, PCI, and HIPAA
• Advanced DLP features, such as fingerprinting, proximity analysis, exact match, and more

Risk-focused classification

• Malicious site identification, including C&C, botnets, phishing, and spam sites
• Identify torrent repositories and evasive services, such as anonymizers and proxy services
• Identify newly registered and newly observed domains

Advanced threat protection

• Provides real-time, full file inspection to detect and block malware
• Zero-day protection using advanced heuristic analysis, and dynamic sandbox analysis
• Backed by Netskope Threat Research Labs, a dedicated team researching cloud and web threats
• Detects threats quickly to provide shared collective protection

Transport Layer Security (TLS) decryption

• Decrypt and inspect TLS traffic at cloud-scale with no impact to end-user experience

Are there any prerequisites to using Netskope Secure Web Gateway?

To use Netskope Secure Web Gateway, you must:

• Purchase Netskope Secure Web Gateway and then contact Dell Support to have it enabled in your tenant.
• Install version 66 or later of the Netskope Client for traffic steering.

What are some Netskope Secure Web Gateway use cases?

By adding specific category classifications to a Real-time Protection policy, you can prohibit users from inappropriate sites and protect your organization from data loss and potential malware. Here are some examples of how to use Netskope Secure Web Gateway.

• Prohibit users from sites that violate your organization's Acceptable Use Policy. Custom categories can be created to find prohibited sites not already specified in one of our predefined categories. The URL Lookup feature can tell you whether a category contains a particular URL to help ensure full coverage.

• Prohibit users from possibly inappropriate sites but allow access if either justification can be provided by the user, or a site exception is configured using a URL list in a custom category. Users are notified when they can justify access and when they are denied access due to a policy violation.
• Protect your users and organization from data loss and malicious sites by adding DLP or Threat Protection profiles to a Real-time Protection policy. Remediate threats by blocking sites with multiple layers of threat detection including static and dynamic antivirus inspection, user behavior anomaly detection, heuristic analysis, sandbox analysis, and more.

Are there any considerations for deploying Netskope Secure Web Gateway?

1. Determine which traffic steering method that you want to use: Netskope Client, Generic Routing Encapsulation (GRE), or IP Security (IPSec) tunneling, Secure Forwarder, or a Data Plane On-Premises appliance.
2. Create custom categories to use in a Real-time Protection policy. Use the URL list feature to include or exclude specific URLs in a custom category.
3. Create a Real-time Protection policy that uses the custom categories and profiles you created to protect your web traffic activity.
4. Review the SkopeIT Site and Page Events to get specifics about your web traffic, and then create web summary reports to compile web usage analytics.

How do I request a Dell Endpoint Security evaluation?

Dell Endpoint Security evaluations may be requested to determine opportunities for security enhancements, and to identify potential risk factors. For more information, contact Dell Support.

To contact Dell Support, see Dell Data Security International Support Phone Numbers.
Go to TechDirect to generate a technical support request online.
For additional insights and resources, join the Dell Security Community Forum.