Move from monitor to protect?

Forcepoint recommends that administrators start by setting policies to apply to all sources and destinations of data with a permissive action. After monitoring the results, they can start to apply more restrictive actions.

To block SMTP traffic with the protector (explicit MTA):

1. In the Data Security module of the Security Manager, go to the Settings > Deployment > System Modules page and select the protector.
2. In the Edit Protector window, select the Services tab, then click the SMTP service.
3. In the Edit SMTP Service window, under the General tab, select Mail Transfer Agent (MTA) in the Mode drop-down menu.
4. Select the Mail Transfer Agent (MTA) tab, and in the drop-down menu under Operation Mode, select Blocking.
5. Adjust the configuration as needed, then click OK.
6. Click Deploy.

The protector must be integrated with a third-party proxy to enforce DLP policy on HTTP traffic.

Alternately, use the Web Content Gateway appliance with Forcepoint DLP Network Gateway or Forcepoint Web Security to block HTTP traffic.