Secure Web Gateway 11.7 Upgrade Release Notes



Similar documents
Secure Web Gateway 11.5 Release Notes

Secure Web Gateway Version 11.7 High Availability

Windows Policies That Policy Check Verifies

Dell One Identity Cloud Access Manager How to Configure vworkspace Integration

About Recovery Manager for Active

SolarWinds Migrating SolarWinds NPM Technical Reference

Dell InTrust Preparing for Auditing Microsoft SQL Server

.Trustwave.com Updated October 9, Secure Web Gateway Version 11.0 Amazon EC2 Platform Set-up Guide

Dell One Identity Cloud Access Manager How to Configure for High Availability

Windows Peer-to-Peer Network Configuration Guide

Installation Guide Supplement

Secure Web Gateway Version 11.0 User Guide

.Trustwave.com Updated October 9, Secure Web Gateway SNMP Monitoring and SWG MIB

Wave Adapter for DealerSocket Automotive CRM. Installation and Configuration Guide

Dell Recovery Manager for Active Directory 8.6. Quick Start Guide

formerly Help Desk Authority Upgrade Guide

Symantec Database Security and Audit 3100 Series Appliance. Getting Started Guide

January 23, 2010 McAfee SaaS Continuity User Guide

.trustwave.com Updated October 9, 2007 TECHNICAL ASSISTANCE CENTER (TAC) SUPPORT GUIDE

Trustwave SEG Cloud Customer Guide

Symantec Backup Exec Management Plug-in for VMware User's Guide

Issue 1 EN. Nokia and Nokia Connecting People are registered trademarks of Nokia Corporation

Strong Authentication for Juniper Networks SSL VPN

Windows Domain Network Configuration Guide

By the Citrix Publications Department. Citrix Systems, Inc.

Dell Statistica Statistica Enterprise Installation Instructions

Symantec Security Information Manager 4.8 Release Notes

Disaster Recovery. Websense Web Security Web Security Gateway. v7.6

Secure Web Service - Hybrid. Policy Server Setup. Release Manual Version 1.01

ACTi NVR Config Converter User s Manual. Version /06/07

StarWind iscsi SAN & NAS: Configuring HA Storage for Hyper-V October 2012

Veritas Cluster Server Application Note: High Availability for BlackBerry Enterprise Server

AKIPS Network Monitor User Manual (DRAFT) Version 15.x. AKIPS Pty Ltd

LOAD BALANCING 2X APPLICATIONSERVER XG SECURE CLIENT GATEWAYS THROUGH MICROSOFT NETWORK LOAD BALANCING

Printer Driver Installation Manual

Security Analytics Engine 1.0. Help Desk User Guide

StarWind iscsi SAN Configuring HA File Server for SMB NAS

By the Citrix Publications Department. Citrix Systems, Inc.

StarWind iscsi SAN: Configuring HA File Server for SMB NAS February 2012

MARSHAL REPORTING CONSOLE VERSION 2.5 INSTALLATION GUIDE

Symantec Backup Exec 2010 R2. Quick Installation Guide

Dell InTrust Preparing for Auditing Cisco PIX Firewall

Spotlight on Messaging. Evaluator s Guide

Dell One Identity Cloud Access Manager Installation Guide

HP Device Manager 4.6

Symantec Protection Engine for Cloud Services 7.0 Release Notes

Backup Exec 15. Quick Installation Guide

Dell InTrust Preparing for Auditing and Monitoring Microsoft IIS

2.0. Quick Start Guide

Symantec Integrated Enforcer for Microsoft DHCP Servers Getting Started Guide

Dell Recovery Manager for Active Directory 8.6.3

Dell Enterprise Reporter 2.5. Configuration Manager User Guide

Dell Spotlight on Active Directory Server Health Wizard Configuration Guide

CA ARCserve Backup r16.x Professional Exam (CAT-360) Study Guide Version 1.1

Strong Authentication for Microsoft TS Web / RD Web

Dell Statistica Document Management System (SDMS) Installation Instructions

StarWind iscsi SAN Software: Tape Drives Using StarWind and Symantec Backup Exec

Quick Start Guide For Ipswitch Failover v9.0

Dell One Identity Cloud Access Manager How To Deploy Cloud Access Manager in a Virtual Private Cloud

Privileged Access Management Upgrade Guide

StarWind iscsi SAN & NAS: Configuring HA Shared Storage for Scale- Out File Servers in Windows Server 2012 January 2013

Introduction to Version Control in

StarWind iscsi SAN Software: Providing shared storage for Hyper-V's Live Migration feature on two physical servers

Upgrade Guide. CA Application Delivery Analysis 10.1

Symantec Mail Security for Microsoft Exchange Management Pack Integration Guide

NCD ThinPATH Load Balancing Startup Guide versions and 2.8.1

DME-N Network Driver Installation Guide for LS9

HP Intelligent Management Center v7.1 Virtualization Monitor Administrator Guide

AccelPro SSL VPN v3.1.9 AccelPro SSL VPN. End User Installation Guide for Director General Of Hydro Carbon Users

StarWind iscsi SAN & NAS: Configuring HA File Server on Windows Server 2012 for SMB NAS January 2013

NCD ThinPATH Load Balancing Startup Guide

Strong Authentication for Juniper Networks

Failover Manager for WhatsUp Gold v16.0 Quick Start Guide

Exchange 2010 Journaling Guide

Dell Recovery Manager for Active Directory 8.6.0

CA Nimsoft Monitor. Probe Guide for Internet Control Message Protocol Ping. icmp v1.1 series

Application Note: GateManager Internet requirement and port settings

Integrated Citrix Servers

Hyper V Windows 2012 and 8. Virtual LoadMaster for Microsoft Hyper V on Windows Server 2012, 2012 R2 and Windows 8. Installation Guide

Symantec Security Information Manager - Best Practices for Selective Backup and Restore

Testing and Restoring the Nasuni Filer in a Disaster Recovery Scenario

Dell One Identity Cloud Access Manager How to Configure for SSO to SAP NetWeaver using SAML 2.0

SATA RAID SIL 3112 CONTROLLER USER S MANUAL

CA Cloud Service Delivery Platform

Active Directory 2008 Operations

Backup Exec Cloud Storage for Nirvanix Installation Guide. Release 2.0

StarWind iscsi SAN Software: Using an existing SAN for configuring High Availability storage with Windows Server 2003 and 2008

Dell One Identity Cloud Access Manager How to Configure Microsoft Office 365

VERITAS Backup Exec 9.1 for Windows Servers Quick Installation Guide

SC-T35/SC-T45/SC-T46/SC-T47 ViewSonic Device Manager User Guide

Clearview Customer Web Access

DME-N Network Driver Installation Guide for M7CL/LS9/DSP5D

Foglight Experience Monitor and Foglight Experience Viewer

VERITAS Backup Exec TM 10.0 for Windows Servers

Symantec Mobile Management for Configuration Manager

JetAdvice Manager Data Collector v Date:

Testing and Restoring the Nasuni Filer in a Disaster Recovery Scenario

Symantec Backup Exec System Recovery Exchange Retrieve Option User's Guide

Blue Coat Systems. Client Manager Redundancy for ProxyClient Deployments

Transcription:

Secure Web Gateway 11.7 Upgrade Release Notes August 2015 Trustwave is pleased to announce that the upgrade path for Secure Web Gateway to version 11.7 is now available. For more information on SWG 11.7, see the Trustwave SWG 11.7 Release Notes. Contents 1 Supported Appliances... 1 2 Resolved Issues... 2 3 Limitations and Known Issues... 2 4 Before You Start... 2 5 Upgrading from Previous Versions... 3 6 High Availability and Disaster Recovery Policy Servers... 4 7 Documentation... 4 1 Supported Appliances The following SWG appliances are supported: SWG 3000/NG5000-S2 (IBM Model 3550 M4) TS-250 SWG SWG 5000 (IBM Model X3550 M4) TS-500 SWG SWG 7100/NG8100-S1 (IBM Model HS23 7875) SWG 7080/NG8080-S1 (IBM Model HS23 7875) Note: SWG 11.7 requires a minimum of 4GB RAM. To purchase additional memory, contact your Trustwave Channel Partner/Account Manager. For more information, see the Secure Web Gateway Hardware Support Matrix. Copyright 2015 Trustwave Holdings, Inc. All rights reserved. 1

2 Resolved Issues Web log data, Report data, and Report history are now retained on upgrade. 3 Limitations and Known Issues Upgrading Secure Web Service Hybrid cloud scanners requires assistance from Trustwave Support. Scanners require at least 4GB RAM to upgrade to version 11.7. Policy servers require at least 8GB RAM to upgrade to version 11.7. In a PKI environment, a generic certificate must be generated prior to upgrading/reconnecting scanners. Default and customized configuration settings are not overwritten by the upgrade process. This may result in settings that are not as secure as those provided by a standard installation of SWG 11.7. 4 Before You Start Note the following: You can upgrade directly to SWG version 11.7 only from version 11.6. When upgrading from a version earlier than 11.6, incremental upgrades to version 11.6 are required first. SWG version 11.6 and later cannot be downgraded to versions prior to 11.6 due to the introduction of the TrustOS software platform. "Downgrade Policy Server to Previous Version" is therefore not available as a Policy Server option in the Devices tree. Reinstallation of a previous version prior to version 11.6 requires a backup of the Policy Server and Reports databases and a restore procedure. For more information, refer to the SWG Help or the Management Console Reference Guide. When upgrading from an SWG version earlier than version 11.5: If the current version includes Websense or IBM URL Categorization, refer to Migrating from IBM and Websense URL Filtering Engines to the Trustwave URL Filtering Engine on page 3. If Web log views include filters that refer to IBM or Websense categories, the migration process removes these filters from the view. As a result, the meaning of the filters might change. The user should review them to determine if any changes are required. For more information, refer to the section Migrating from IBM and Websense URL Filtering Engines to the Trustwave URL Filtering Engine on page 3. If Audit log views include filters that refer to the Device IP column, the migration process removes these filters from the view. As a result, the meaning of the filters might change. The user should review them to determine if any changes are required. 2 Copyright 2015 Trustwave Holdings, Inc. All rights reserved.

4.1 Migrating from IBM and Websense URL Filtering Engines to the Trustwave URL Filtering Engine Trustwave SWG versions 11.5 and later are offered with the Trustwave proprietary URL Filtering engine only. SWG is no longer reliant on third party vendors IBM and Websense for URL filtering engines. For implementations that previously used IBM or Websense, Trustwave provides a migration utility that translates and maps IBM and Websense URL categories to Trustwave categories. Note the following: Upgrading to SWG 11.7 from a system that used IBM or Websense URL filtering engines requires the pre-installation of a new valid Trustwave license, which includes the Trustwave URL categorization engine. The upgrade utility migrate_url_filter_rules is available in the Limited Shell, after installation of the relevant hotfix. Hotfix installation procedures are described in the hotfix Release Notes. Mapping from the IBM or Websense URL filtering engines to the Trustwave engine is performed automatically by the utility either on a 1-to-1 or 1-to-many basis. All changes, as well as warnings of URLs that cannot be mapped, are reported in an output file generated by the utility. Upgrading to SWG 11.7 from a system that used IBM or Websense URL filtering engines without running the migration tool will result in existing URL categorizations being lost. 5 Upgrading from Previous Versions There are two upgrade methods: Upgrading by backing up all SWG data, installing the new version, and then restoring the data. Upgrading incrementally from the current version via the SWG console. 5.1 Upgrading from SWG Version 11.x to Version 11.7 When upgrading from a version earlier than 11.6, incremental upgrades to version 11.6 are required first. To upgrade from version 11.0, 11.5 or 11.6: 1. Make sure that all Trustwave security updates are installed. 2. In the Policy Server, go to Administration Updates Updates Management. 3. In the Available Updates tab, click the icon for the update and select Install Now. The system will reboot. This may take some time. 4. Follow the steps on the displayed Status page. 5. When the restart is complete, login to the SWG console. 6. Go to Administration System Settings SWG Devices. 7. Right-click each relevant scanning device and select Upgrade to PS version. Copyright 2015 Trustwave Holdings, Inc. All rights reserved. 3

6 High Availability and Disaster Recovery Policy Servers The High Availability (HA) solution was designed for installations where the two Policy Servers were physically close, running on the same subnet, and had multiple connections between them. If you are running HA between two different physical locations, we believe you would be better served by using the new Disaster Recovery (DR) solution and should consider switching. The main differences between HA and DR features are that DR does not support a virtual IP nor does it support automatic failover. The advantage of DR is that it is a more robust solution that provides the required functionality should a disaster befall the primary Site. Manual failover in the DR environment is also more tightly controlled than in an HA environment, allowing a seamless transfer between Sites. 6.1 Upgrading to SWG Version 11.7 on a High Availability Setup (from version 11.0 and later) 1. Deactivate High Availability on the Passive Policy Server from the Active: a. Log into the Management Console on the Active Policy Server and go to Administration System Settings SWG Devices. b. Expand the node of the Active Policy Server and click High Availability. c. Click Edit and clear Enable High Availability Policy Server. d. Click Save. 2. Using the instructions in the section Upgrading from Previous Versions above, upgrade to SWG 11.7 on the Active Policy Server. 3. Install SWG 11.7 (clean installation) on the Passive Policy Server. 4. Activate the Passive Policy Server: a. Log into the Management Console on the Active Policy Server and go to Administration System Settings SWG Devices. b. Expand the node of the Active Policy Server and click High Availability. c. Click Edit and select Enable High Availability Policy Server. d. Click Save. 7 Documentation For documentation available online, go to: https://www.trustwave.com/support/secure-web-gateway/documentation.asp 4 Copyright 2015 Trustwave Holdings, Inc. All rights reserved.

Legal Notice Copyright 2015 Trustwave Holdings, Inc. All rights reserved. This document is protected by copyright and any distribution, reproduction, copying, or decompilation is strictly prohibited without the prior written consent of Trustwave. No part of this document may be reproduced in any form or by any means without the prior written authorization of Trustwave. While every precaution has been taken in the preparation of this document, Trustwave assumes no responsibility for errors or omissions. This publication and features described herein are subject to change without notice. While the authors have used their best efforts in preparing this document, they make no representation or warranties with respect to the accuracy or completeness of the contents of this document and specifically disclaim any implied warranties of merchantability or fitness for a particular purpose. No warranty may be created or extended by sales representatives or written sales materials. The advice and strategies contained herein may not be suitable for your situation. You should consult with a professional where appropriate. Neither the author nor Trustwave shall be liable for any loss of profit or any commercial damages, including but not limited to direct, indirect, special, incidental, consequential, or other damages. The most current version of this document may be obtained by contacting: Trustwave Technical Support: Phone: +1.800.363.1621 Email: tac@trustwave.com Trademarks Trustwave and the Trustwave logo are trademarks of Trustwave. Such trademarks shall not be used, copied, or disseminated in any manner without the prior written permission of Trustwave. About Trustwave Trustwave is a leading provider of compliance, Web, application, network and data security solutions delivered through the cloud, managed security services, software and appliances. For organizations faced with today's challenging data security and compliance environment, Trustwave provides a unique approach with comprehensive solutions that include its TrustKeeper portal and other proprietary security solutions. Trustwave has helped hundreds of thousands of organizations ranging from Fortune 500 businesses and large financial institutions to small and medium-sized retailers manage compliance and secure their network infrastructures, data communications and critical information assets. Trustwave is headquartered in Chicago with offices worldwide. For more information, visit https://www.trustwave.com.

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information