Specifying Protocols of DLP Rules

Each rule Set of traffic parameters and other conditions in a Rule Base (Security Policy) that cause specified actions to be taken for a communication session. in the Data Loss Prevention Check Point Software Blade on a Security Gateway that detects and prevents the unauthorized transmission of confidential information outside the organization. Acronym: DLP. policy has a definition for the protocols of the data transmission. The default setting for Protocols is Any: DLP scans transmissions over all enabled protocols.

You can control which protocols are supported by DLP in general, or by each gateway, or for each rule.

To specify supported protocols for DLP:

1. Open Additional Settings > Protocols.

2. Select the protocols to give them the DLP support, in general.

   For example, if performance becomes an issue, you could clean the HTTP checkbox here, without making any other change in the policy. HTTP posts and web mail would go through without Data Loss Prevention inspection.

To specify supported protocols for individual DLP Gateways:

1. Open Additional Settings > Protocols.

2. In the Protocol Settings on DLP Blades area, select a DLP Gateway.

3. Click Edit.

   The properties window of the gateway opens.

4. Open the Data Loss Prevention page of the gateway properties.

5. Select Apply the DLP policy to these protocols only and select the protocols that get support on this DLP Gateway.

To specify supported protocols for a rule:

1. In the Policy view, click the Protocol column plus button.

   If this column is not in view, right-click a column header. From the list of possible columns that shows, select Protocols.

2. Select the protocols for this rule.

   Traffic that matches the other parameters of the rule, but is sent over another protocol, is not inspected.