Creating a rule to allow access to Forcepoint RBI

Depending on your firewall policy, you might need to add a rule to allow clients to access Forcepoint RBI using Port 443 (TCP).

Before you begin

Before you create the rule, create a custom TCP service named rbi-streaming with a Destination port 443.

Depending on your Forcepoint RBI deployment type, you might need to create two rules: one rule to allow endpoints to access the Forcepoint RBI Admin Portal and one rule to allow endpoints to access the Forcepoint RBI remote container. Regardless of the deployment type, the endpoints need HTTPS and rbi-streaming access with the Forcepoint RBI service.

Steps

  1. Sign in to Forcepoint NGFW Security Management Center (SMC).
  2. Select Configuration.
  3. Find your NGFW policy under the Policies branch and open it for editing.
  4. On the IPv4 Access tab, add a new Access rule with the following values:
    • Source: Select an element matching the clients in your network intending to use Forcepoint RBI, or create a new element to represent them (such as rbi-clients).
    • Destination: *.rbi.forcepoint.com and *.rbi.forcepoint.net.
    • Service: HTTPS and the custom rbi-streaming service.
    • Action: Allow.
  5. Save the policy.