What is Seqrite Secure Web Gateway?


Seqrite Secure Web Gateway is a security solution that filters unwanted software/malware from user-initiated Web/Internet traffic and enforces corporate policy compliance.  It works on RFC 2616 compliant HTTP/1.1 proxy server, specially designed to provide maximum protocol, and payload security.

Seqrite based Secure Web Gateways enable your users to safely access the web.

Seqrite Secure Web Gateway, when setup in Reverse Proxy mode, secures your web applications.

Seqrite Secure Web Gateway is a highly scalable software, that enables scaling up by increasing the hardware provisioning for more than 425 users and dedicated hardware appliance for up to 425 users.


Why should I use Seqrite Secure Web Gateway?


Seqrite Secure Web Gateway is a HTTP Proxy Server specially designed for web security. You should use Seqrite Secure Web Gateway for securely distributing Internet access across large network and to protect your enterprise against productivity losses, and collateral losses.


Which Operating Systems does Seqrite Secure Web Gateway support?


Seqrite Secure Web Gateway support LINUX.


Does Seqrite Secure Web Gateway inspect HTTPS traffic?


Yes, of course Seqrite Secure Web Gateway inspect HTTPS traffic.

HTTPS Inspection is the standard Security technology for encrypting a connection between the client and web server.


When should I enable HTTPS Inspection?


Enable HTTPS inspection on Seqrite Secure Web Gateway to inspect traffic that is encrypted by the Secure Sockets Layer (SSL) protocol. By that Seqrite Secure Web Gateway does deep content inspection of encrypted HTTPS traffic. Encrypted content is filtered easily.


When should I bypass HTTPS Inspection?


The HTTPS inspection Bypass option enables you to define specific websites that are not subject to decryption as they flow through the proxy.

Some websites may include personal identification information that should not be decrypted.

To avoid liability for inspecting this type of information, you may want to specify some or all these sites for decryption bypass.

The selected sites will not be decrypted even if the category or categories that the sites belong to are selected for SSL analysis.


What are the benefits of HTTPS inspection in Seqrite Secure Web Gateway?


You should block access to personal Google accounts.

You should give Read only access to sites like Facebook, Twitter etc. Users will be able to login into their accounts, but they will not be able to post or comment or like or chat.

You should enforce safe search or safety mode-based searches in Google, Bing and Yahoo search engine. We can enforce it on any websites that offers safety mode-based search.

You should block images over Google.

You should filter text, Images over HTTP, and HTTPS sites.

You should allow specified users to access or to login into specified HTTP and HTTPS sites and block others.

You should use Virus scanning for both HTTP and HTTPS sites.

You should block attachments to Gmail and can block Gmail Chat.


What is an SSL certificate?


SSL stands for Secure Sockets Layer, the protocol which provides encryption.

SSL Certificates are small data files that digitally bind a cryptographic key to an organization’s details.

When installed on a web server, it activates the padlock and the https protocol and allows secure connections from a web server to a browser.

SSL Certificates provide secure, encrypted communications between a website and an internet browser.

SSL Certificates are installed on pages that require end-users to submit sensitive information over the internet like credit card details or passwords.


Where can I get an SSL certificate?


You should get SSL certificate on self-service portal at - https://www.safesquid.com/

You can generate new self-signed certificate also.



Can I use my SSL certificates generated from my Enterprise CA?


Yes, you can use your SSL certificate generated from you Enterprise CA if you have. Seqrite Secure Web Gateway provides you a facility to use SSL certificate generated from Enterprise CA.


Can I integrate an LDAP service like Microsoft Active Directory or Open LDAP with Seqrite secure web gateway?


Yes, you can integrate an LDAP service like Microsoft Active Directory or Open LDAP with Seqrite Secure Web Gateway if your network enterprises that has many users, that can manage user credentials via a centralized system.

Microsoft’s Active Directory, and Open LDAP based on various Directory Services are extremely popular for setting up a centralized user identity management system.

A Web Gateway when integrated to a Directory Service can:

Authenticate the users based on their Directory Service Credentials.

Control their access to the web depending upon their enterprise role and hierarchy.

Log and report their activity, in a manner that the HR managers can analyse internet usage of individuals as well as groups of people.


What is Seqrite Secure Web Gateways SSO Authentication?


Seqrite Secure Web Gateway SSO authentication is a non-interactive authentication process.

Seqrite Secure Web Gateway SSO Authentication support is particularly useful for Enterprise networks that has Microsoft AD based Domain controller.

By properly configuring the necessary Kerberos related factors with Seqrite Secure Web Gateway, your enterprise Internet users can enjoy SSO Authentication.

Seqrite Secure Web Gateway SSO authentication ensures that the users do not have to manually provide their user credentials such as username / password to access your enterprise network. The user’s access will be restricted as specified by admin on LDAP server. Seqrite Secure Web Gateway SSO authentication, thus not only just adds convenience to the overall user experience, but also enhances security.


If my SSO authentication fails, is LDAP fail over functionality available in Seqrite Secure Web Gateway?


If user faces any issue while SSO authentication user can provide valid LDAP credentials i.e. Username and Password. Once username and password gets validated user will get access to network enterprise.


When should I bypass authentication?


You can bypass authentication for certain applications (like drop box) which do not support proxy authentication.


Can I use Seqrite Secure Web Gateway Captive portal to monitor internet usage traffic?


Yes, you can use Seqrite Secure Web Gateway captive portal to monitor internet usage traffic.


What is Seqrite Secure Web Gateway Captive portal?


Seqrite Secure Web Gateway captive portal works the same as general captive portal.

It enhances security of Wi-Fi network by authenticating users before granting internet access.

Users will receive Seqrite Secure Web Gateway captive portal landing page when they try to access internet via Wi-Fi network. Users need to punch in credentials to access Internet.

Seqrite Secure Web Gateway captive portal validates user credentials using various authentication mechanisms and maintains database of authenticated source IP addresses and usernames for lookup.

If a user from a source IP address authenticated through captive portal, then Seqrite Secure Web Gateway will pick the username from the database and attach to the traffic coming from the same source IP address.

This way Seqrite Secure Web Gateway captive portal secures WIFI network by only granting access to valid users.

Combining Seqrite Secure Web Gateway Captive Portal with Seqrite Secure Web Gateway secure web gateway will allow monitoring internet usage, filtering traffic and doing many more things to enhance security levels.


Does Seqrite Secure Web Gateway support transparent proxy?


Yes, Seqrite Secure Web Gateway supports transparent proxy.

Seqrite Secure Web Gateway supports both HTTP and HTTPS websites in transparent mode. The HTTPS websites in transparent mode are called SSL transparent proxy.

The traffic will come to router and router will direct traffic to Seqrite Secure Web Gateway with port 80 and 443 respectively.

The redirection rules on Seqrite Secure Web Gateway will redirect traffic to Seqrite Secure Web Gateway Proxy with port 8080 and 8443 (SSL transparent) respectively (By enabling IP forwarding).


Why should I enable WCCP?


If you are looking for transparent redirection of traffic, Load balance traffic, scale up & High availability, WCCP should be enabled in Seqrite secure web gateway.

Enable WCCP support in routers. This can be done only if the router supports WCCP.

Ex: CISCO ASA routers.

Web Cache Communication Protocol (WCCP) is a Cisco-developed content-routing protocol that provides a mechanism to redirect traffic flows in real-time. It has built-in load balancing, scaling, fault tolerance, and service-assurance (fail-safe) mechanisms.



Can I prevent user to access Social networking sites?


Yes, you can prevent users from accessing Social networking sites using Seqrite Secure Web gateway.

You can allow these sites for a specific time duration for instance during lunch hour.

Seqrite Secure Web Gateway allows you to give full Facebook access to your social media group, partial access to a customer service group, and read-only access to other groups. Access to Facebook can also assigned by time of day, so permissions could relax during lunch or after business hours.


Can I prevent users to upload confidential data?


Yes, you can prevent users from uploading confidential data using Seqrite Secure Web Gateway.

When you have confidential information in the organization and someone from internal users leaks the information intentionally or unintentionally, then what happens? Huge collateral damage to the organization.

Seqrite Secure Web Gateway comes with Advanced DLP solution embedded in it, which analyses post data, deeply inspects archives using file decomposition methods and can identify whether archive or emails or social media posts contains certain keyword matches. Based on the match admin can take actions for specific user.

The Advanced DLP solution can be managed from Seqrite Secure Web Gateway Self Service portal where you can create various keyword expression matches. Seqrite Secure Web Gateway will download these keyword expressions and loads into memory.


Can I prevent users to upload specific file extensions?


Yes, you can prevent users from uploading specific file extensions using Seqrite Secure Web Gateway.

Seqrite Secure Web Gateway DLP section is nothing but Data Loss Prevention module, used to protect sending sensitive or critical information outside the corporate network.

It is possible by blocking the specific file types or file extensions based on content type and extension of file types.


Can I prevent users to use anonymous proxy?


Yes, you can prevent users from using anonymous proxy using Seqrite Secure Web Gateway.

An anonymous proxy will allow users to surf the web anonymously, since it tunnels your data through servers that spread out across the globe and involve other IP addresses.

Anonymous Proxy service enhances your security and lets your users access some restricted websites online.

Seqrite Secure Web Gateway blocks these proxies so that no user can access the blocked websites.


Can I prevent users to use their personal Gmail account in company network?


Yes, you can prevent users from using their personal Gmail account in the company network using Seqrite Secure Web Gateway.


Can I prevent users to login over Facebook or Gmail?


Seqrite Secure Web Gateway restricts specific users from login over Facebook or Gmail.

Except selected users all can login into Facebook or Gmail.


Does Seqrite Secure Web Gateway protect network against Malware and External Attacks?


Seqrite Secure Web Gateway protects network against malware and external attacks.

There are numerous ways to protect and remove malware from our computers.

No one method is enough to ensure your computer is secure.                        

The more layers of defence, the harder it is for hackers to access your computer.


Should I block third party cookie?


Seqrite Secure Web Gateway blocks cookies for third-party domains.

Control tracking your activity across different sites and hide the referrer for third-party domains. Seqrite Secure Web Gateway provides you a great functionality. Now referrer is the same as the hostname.

You can also hide the user agents for third-party domains, instead of original user agent. Seqrite Secure Web Gateway uses default user agent (Mozilla/4.0 (compatible; MSIE 5.5; Windows 98; Win 9x 4.90)).


Should I get performance plot in Seqrite Secure Web Gateway?


You should get performance plot on support page of Seqrite Secure Web Gateway Web GUI.

You can generate performance plot as per your choice.

Seqrite Secure Web Gateway lets you choose according to Last hour, last 7 days, last month, today.

Seqrite Secure Web Gateway also gives you choice to select custom time.


Should I get support tar ball in Seqrite Secure Web Gateway?


You should get support tar-ball on support page of Seqrite Secure Web Gateway Web GUI.

You can generate new support tar-ball.

You can search support tar-ball from existing list according to year, month, day, or time


Should I download my config file?


You should download your config file any time.

Seqrite Secure Web Gateway gives you a choice to download config file according to year, month, day, or time.

Seqrite Secure Web Gateway also gives you a choice to download default config file in case you should have to revert the config file.


Does Seqrite Secure Web Gateway provide dashboard for reporting?


Seqrite Secure Web Gateway provides dashboard which contains details of the last 1000 transactions.

Seqrite Secure Web Gateway dashboard provides IP address, users, user groups, websites domains, profiles, application signature, categories, upload content, download content.

User can edit total number of transaction as per the requirement for report.

User also gets report based on date range.

User can select any number of filtering option.


Can I get reports in PDF format?


Seqrite Secure Web Gateway reporting model gives you exportable reports to PDF and Excel formats. To get the report you must access Seqrite Secure Web Gateway interface and click on Reports > Dashboard. At the bottom right you should get PDF button just above the Seqrite Secure Web Gateway version.


Can I get report of specific dates?


Yes, Seqrite Secure Web Gateway has a structured reporting model.

Seqrite Secure Web Gateway reporting model reduces data processing time

Seqrite Secure Web Gateway reporting model gives you detailed reports

Seqrite Secure Web Gateway reporting model gives you hour-wise reports

Seqrite Secure Web Gateway reporting model gives you better filtering options

Seqrite Secure Web Gateway reporting model gives you a deeper data analysis

Seqrite Secure Web Gateway reporting model gives you an automated data mining engine

Seqrite Secure Web Gateway reporting model gives you exportable reports to PDF and Excel formats