Configure DLP for Policies

You can enable DLP sensors for the WatchGuard SMTP, FTP, HTTP, and HTTPS proxy policies.

Before you can enable Data Loss Prevention for an HTTPS proxy policy, you must enable deep inspection of HTTPS content in the HTTPS proxy action. This is required for DLP to examine content over an HTTPS connection. For more information, go to HTTPS-Proxy: Content Inspection.

Enable DLP Sensors for Policies

You can enable one DLP sensor per policy.

  1. Select Subscription Services > Data Loss Prevention.
  2. Select the Policies tab.
    A list of configured policies that support DLP appears. The Sensor column shows the sensor enabled for each policy.

Screen shot of the Data Loss Prevention page, Policies tab

DLP Policies tab in Fireware Web UI

Screen shot of the Data Loss Prevention dialog box, Policies tab

DLP Policies tab in Policy Manager

  1. To change the sensor for one or more policies, select the policies in the list.
  2. From the Select sensor drop-down list, select a DLP sensor to enable for the selected policies.
    Or, to disable DLP for the selected policies, select None.
  3. Save the configuration.

Select the DLP Sensor in a Proxy Action

You can also change the DLP sensor for a policy when you edit an FTP, HTTP, or SMTP proxy action.

To edit DLP settings when you edit a proxy action, from Fireware Web UI:

  1. Add an FTP, SMTP, or HTTP proxy you want to use with Data Loss Prevention.
    For information on how to add policies, go to Add a Proxy Policy to Your Configuration.
  2. Double-click the policy.
    The Firewall Policies / Edit page appears.
  3. Select the Proxy Action tab.

Screen shot of the Proxy Action tab

  1. Click Data Loss Prevention.
    The DLP Sensor setting appears.
  2. From the DLP Sensor drop-down list, select the DLP sensor to use.

To edit DLP settings when you edit a proxy action, from Policy Manager:

  1. Add an FTP, SMTP, or HTTP proxy you want to use with Data Loss Prevention.
    For information on how to add policies, go to Add a Proxy Policy to Your Configuration.
  2. Double-click the policy.
    The Edit Policy Properties dialog appears.
  3. On the Policy tab, click adjacent to the Proxy action drop-down list.
  4. From the Categories list, select Data Loss Prevention.
    The Data Loss Prevention settings appear.

Screen shot of the HTTP-Client proxy action, Data Loss Prevention settings

  1. From the DLP Sensor drop-down list, select the DLP sensor to use.

Related Topics

Configure DLP Sensors