Summary of the content on the page No. 1
ProSecure Web/Email
Security Threat
Management Appliance
STM150/300/600
Reference Manual
NETGEAR, Inc.
350 East Plumeria Drive
San Jose, CA 95134
202-10519-01
1.0
September 2009
Summary of the content on the page No. 2
© 2009 by NETGEAR, Inc. All rights reserved. Trademarks NETGEAR and the NETGEAR logo are registered trademarks and ProSecure is a trademark of NETGEAR, Inc. Microsoft, Windows, and Windows NT are registered trademarks of Microsoft Corporation. Other brand and product names are registered trademarks or trademarks of their respective holders. Statement of Conditions In the interest of improving internal design, operational function, and/or reliability, NETGEAR reserves the right to make changes
Summary of the content on the page No. 3
Federal Office for Telecommunications Approvals has been notified of the placing of this equipment on the market and has been granted the right to test the series for compliance with the regulations. Voluntary Control Council for Interference (VCCI) Statement This equipment is in the second category (information equipment to be used in a residential area or an adjacent area thereto) and conforms to the standards set by the Voluntary Control Council for Interference by Data Processing Equipme
Summary of the content on the page No. 4
Open SSL Copyright (c) 1998–2000 The OpenSSL Project. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: 1. Redistributions of source code must retain the above copyright notice, this list of conditions, and the following disclaimer. 2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions, and the following disclaimer in the documentati
Summary of the content on the page No. 5
PPP Copyright (c) 1989 Carnegie Mellon University. All rights reserved. Redistribution and use in source and binary forms are permitted provided that the above copyright notice and this paragraph are duplicated in all such forms and that any documentation, advertising materials, and other materials related to such distribution and use acknowledge that the software was developed by Carnegie Mellon University. The name of the University may not be used to endorse or promote products derived fr
Summary of the content on the page No. 6
vi v1.0, September 2009
Summary of the content on the page No. 7
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual Contents About This Manual Conventions, Formats, and Scope ..................................................................................xiii How to Print This Manual ................................................................................................xiv Revision History ...............................................................................................................xiv Chapter 1 Introd
Summary of the content on the page No. 8
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual Understanding the Steps for Initial Connection ..............................................................2-4 Qualified Web Browsers ...........................................................................................2-5 Logging In to the STM ....................................................................................................2-5 Understanding the Web Management Interface Menu Layout ........
Summary of the content on the page No. 9
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual Updating the Software ..................................................................................................3-19 Scheduling Updates ...............................................................................................3-19 Performing a Manual Update .................................................................................3-21 Critical Updates That Require a Restart .......................
Summary of the content on the page No. 10
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual Creating and Deleting Groups by Name ..................................................................5-3 Editing Groups by Name ..........................................................................................5-4 Creating and Deleting Groups by IP Address and Subnet .......................................5-5 Configuring User Accounts .........................................................................
Summary of the content on the page No. 11
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual Chapter 7 Troubleshooting and Using Online Support Basic Functioning ...........................................................................................................7-2 Power LED Not On ...................................................................................................7-2 Test LED or Status LED Never Turns Off .................................................................7-2 LAN or WAN
Summary of the content on the page No. 12
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual xii v1.0, September 2009
Summary of the content on the page No. 13
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual About This Manual ® The NETGEAR ProSecure™ Web/Email Security Threat Management Appliance STM Reference Manual describes how to configure and troubleshoot a ProSecure Web/Email Security Threat Management Appliance STM150, STM300, or STM600. The information in this manual is intended for readers with intermediate computer and networking skills. Conventions, Formats, and Scope The conventions, formats, and scope of
Summary of the content on the page No. 14
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual • Scope. This manual is written for the STM according to these specifications: Product ProSecure Web/Email Security Threat Management Appliance STM150, STM300, or STM600 Manual Publication Date September 2009 For more information about network, Internet, firewall, and VPN technologies, click the links to the NETGEAR website in Appendix B, “Related Documents.” Note: Product updates are available on the NETGEAR websi
Summary of the content on the page No. 15
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual Chapter 1 Introduction This chapter provides an overview of the features and capabilities of the ProSecure Web/Email Security Threat Management Appliance STM150, STM300, or STM600. It also identifies the physical features of the appliances and the contents of the product packages. This chapter contains the following sections: • “What Is the ProSecure Web/Email Security Threat Management Appliance STM150, STM300, o
Summary of the content on the page No. 16
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual In addition to scanning HTTP, HTTPS, FTP, SMTP, POP3, and IMAP traffic, the STM protects networks against spam phishing attacks and unwanted Web use. The STM is a plug-and-play device that can be installed and configured within minutes. What Can You Do with an STM? The STM combines robust protection against malware threats with ease of use and advanced reporting and notification features to help you deploy and man
Summary of the content on the page No. 17
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual Key Features and Capabilities The STM provides the following key features and capabilities: • Up to two pairs of 10/100/1000 Mbps Gigabit Ethernet WAN ports (see “STM Model Comparison” on page 1-5). • Scalable support (see “STM Model Comparison” on page 1-5) for: – up to 600 concurrent users – up to 6000 concurrently scanned HTTP sessions – up to 239 MB/s HTTP throughput – up to 960,000 e-mails per hour SMTP through
Summary of the content on the page No. 18
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual Stream Scanning for Content Filtering Stream Scanning is based on the simple observation that network traffic travels in streams. The STM scan engine starts receiving and analyzing traffic as the stream enters the network. As soon as a number of bytes are available, scanning starts. The scan engine continues to scan more bytes as they become available, while at the same time another thread starts to deliver the by
Summary of the content on the page No. 19
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual Easy Installation and Management You can install, configure, and operate the STM within minutes after connecting it to the network. The following features simplify installation and management tasks: • Browser-based management. Browser-based configuration allows you to easily configure the STM from almost any type of personal computer, such as Windows, Macintosh, or Linux. A user-friendly Setup Wizard is provided a
Summary of the content on the page No. 20
ProSecure Web/Email Security Threat Management (STM) Appliance Reference Manual Table 1-1. Differences Between the STM Models (continued) Feature STM150 STM300 STM600 Hardware Gigabit RJ-45 Ports Total of 5 ports: Total of 3 ports: Total of 5 ports: a • 1 uplink • 1 pair of ports • 2 pairs of ports • 4 downlink (1 uplink and (2 uplink and 1 downlink) 2 downlink) • 1 management • 1 management Gigabit RJ45 Port Pairs with Failure Bypass 0 1 pair of ports 2 pairs of ports Dedicated Management VLA