Move from monitor to protect?
Forcepoint recommends that administrators start by setting policies to apply to all sources and destinations of data with a permissive action. After monitoring the results, they can start to apply more restrictive actions.
To block SMTP traffic with the protector (explicit MTA):
- In the Data Security module of the Security Manager, go to the page and select the protector.
- In the Edit Protector window, select the Services tab, then click the SMTP service.
- In the Edit SMTP Service window, under the General tab, select Mail Transfer Agent (MTA) in the Mode drop-down menu.
- Select the Mail Transfer Agent (MTA) tab, and in the drop-down menu under Operation Mode, select Blocking.
- Adjust the configuration as needed, then click OK.
- Click Deploy.
The protector must be integrated with a third-party proxy to enforce DLP policy on HTTP traffic.
Alternately, use the Web Content Gateway appliance with Forcepoint DLP Network Gateway or Forcepoint Web Security to block HTTP traffic.