What is Content Security Gateway (CSG)?
Content Security Gateway™ (CSG) from CP Secure is a real-time anti-malware appliance that stops spyware and viruses at the gateway, without stopping the Internet. CSG secures HTTP and HTTPS traffic through patent-pending Stream-Based Scanning™ technology, so customers can protect their confidential data, maintain organizational continuity, and reduce IT management costs. CSG also protects SMTP, POP3, IMAP, and FTP traffic.

Why do I need a Web security or gateway anti-spyware solution?
The malware attack vector is rapidly shifting from email to the Web. The widespread use of the Internet and the increasing number of security vulnerabilities in Web browsers and Web applications have contributed to this shift. While most enterprises have already fortified their networks against email-borne threats, the Web vector is usually left undefended against malware attacks.

The complex nature of malware threats (especially spyware) and the potential damage they can cause to enterprises highlight the need for a Web security solution that can stop them at the gateway – before they enter the network

What is Stream-Based Scanning™?
Stream-Based Scanning™ is a revolutionary technology that allows for deeper, more thorough scanning without impacting network throughput. The anti-malware engine scans streams of internet traffic, concurrently receiving, scanning, and outputting the traffic, to ensure that network performance is not degraded. The result is that internet traffic is scanned virtually in real-time – a performance advantage that is easily noticeable to the end-user.

Other gateway anti-virus and anti-spyware products use batch-based scanning technology, which commences scanning only after an entire file is received and starts outputting only after the entire file has been scanned. End-users often experience long delays or sometimes even timeouts while the file is transferred and scanned. When applied to the new malware threats in real-time web traffic, the traditional scanning approach introduces unacceptable levels of latency that bring enterprise web activities to a standstill. To defend the real-time web attack vector, high performance anti-malware scanning is no longer optional – it is absolutely required.

Whose scan engine do you use?
CSG uses two scan engines – our own scan engine and Kaspersky Lab's – to provide the most comprehensive and reliable protection against known and unknown malware. The CSG's dual scan engine architecture reassures customers that they are stopping the latest-breaking spyware and viruses. CP Secure's proprietary scan engine is one of only nine gateway scan engines certified by ICSA Labs to detect 100% of all currently active viruses and other malware. Kaspersky's scan engine is widely recognized in the industry, and confirmed by extensive third party tests, as having the highest detection rates for known and unknown spyware and viruses. The dual scan engines utilize the most complete signature library available, heuristic scanning, and false alarm detection, ensuring that both known and unknown malware are detected reliably.

How big is your signature library?
The CSG’s signature database includes more than 100,000 malware instances, including over 50,000 spyware instances. One of the most comprehensive in the security industry, this sizable database enables CSG to detect all known classes and sub-classes of malware. Spyware classes that it covers, for example, include:

• Keyloggers
• Root kits
• Browser hijacks
• Fraudulent dialers
• Trojan horses
• Backdoors
• Hacker tools
• Password tools
• Joke programs
• Adware

How often is your signature library updated?
CP Secure releases updates to the malware signature library on an hourly basis to ensure up-to-date protection against new threats and variants of old threats.

Are updates automated?
Yes, CSG automatically downloads and installs any available update that CP Secure may post to its Update Server. CSG can be configured to check the CP Secure Update Server for updates as frequently as every 15 minutes.

What are the system requirements?
None, CSG appliances are true appliances. No software installation or network reconfiguration is required in a typical deployment. Simply plug the appliance into your network, enable scanning options and it will immediately begin protecting your network from viruses, spyware, spam and other malware.

Which browsers are compatible with CSG?
Internet Explorer 5.0 and higher or Netscape 7.1 and higher (min. resolution 800 x 600).

What is your support system like? How do I obtain technical support if I run into a problem?
Responsive, 24/7 technical support is one the key differentiators that put CP Secure ahead of the competition. As a CP Secure customer, you can obtain support in two ways:

• Live phone support - Call our technical support hotline anytime and get answers on the spot from our knowledgeable support specialists. No forms to fill out, no automated answering systems, no running around.
  
• Virtual onsite support - A built-in support tunnel via Secure Sockets Layer (SSL) allows CP Secure support specialists to remotely and quickly troubleshoot CSG without having to go onsite. You get fast, responsive support for your technical issues without having to send in the appliance or call tech support.

Where should CSG be installed in the network?
If you have a firewall, install the CSG between the firewall and the router. If you do not have a firewall, install the CSG immediately behind the gateway. For additional deployment options, please refer to the Deployment section in the Getting Started Guide.

Do I need to modify firewall rules or policies after installing a CSG in the network?
No. The plug and play nature of the CSG ensures that you do not have to modify firewall rules and policies.

Is CSG a proxy appliance?
No, CSG is an inline, transparent bridge, which means it does not require network reconfiguration and may be deployed easily in a matter of minutes. This ease of deployment enables customers to simply “drop in” CSG as part of their existing layered defense.

Is it easy to migrate to CSG?
Migrating from a third-party security appliance is very straightforward. If you are migrating from a network appliance that works in proxy mode, all you need to do is remove the proxy settings in the clients’ browser settings. If your network is using Active Directory, this can be done easily either by using group policy or scripting.

If you are migrating from another appliance that works in transparent bridge mode, just put CSG in its place and you’re all set. Since it works in transparent mode, CSG can be migrated inline without requiring changes to other network configurations such as default gateways.

Does CSG support high availability?
CSG provides four high availability features – RAID, redundant power supply, fail-over, and fail-open – that provide high availability to your CSG deployment. The RAID feature is only available on CSG 2500, redundant power supplies are included with CSG 1500 and CSG 2500, the fail-open feature is available on CSG 1000+ and above, and fail-over is available for CSG 300 and higher models.

What’s the purpose of the fail-over unit in the price list?
A fail-over unit is a second CSG appliance that you can purchase at a discounted price if you want to add fail-over capability to your CSG deployment. In a fail-over deployment, one CSG acts as the primary appliance (active) and the other as backup (passive). When the primary CSG appliance encounters system or hardware issues, the secondary CSG appliance kicks in and takes over scanning network traffic for malware. Adding fail-over capability to your CSG deployment ensures that the network stays protected in case the primary CSG appliance ceases to function due to system or hardware issues.

Are all the Ethernet ports on the CSG equal?
Yes, each port is equal because CSG works in bridge mode.

What is the default IP address and subnet mask?
The default IP address is 192.168.248.248. The default subnet mask is 255.255.255.0. CSG appliances can also be accessed at http://1.1.1.8 when located between the gateway and the management console.

How do I configure the CSG’s IP address?

1. Open a standard web browser (i.e., Internet Explorer) from any computer connected to the network and enter the default IP address (http://192.168.248.248) in the address bar.
2. Log in using the default login name and password.
3. Launch the Setup Wizard.
4. Follow the steps shown to specify a different IP address, define internal domains, set date and time, and select which scan services to enable.
5. Save settings and exit the Wizard.