Enabling or disabling bypass for Symantec Network Prevent

book

Article ID: 179483

calendar_today

Updated On:

Products

Messaging Gateway

Issue/Introduction

 

Resolution

Enabling or disabling bypass for Symantec Network Prevent

By default, outbound email bypasses Symantec Network Prevent if all Symantec Network Prevent servers are unavailable. Bypass is triggered only if a connection cannot be established with the Symantec Network Prevent servers.

Bypass is not triggered in the following cases:

  • The connection to Symantec Network Prevent server is established but the connection is deferred.

  • The email results in an SMTP 4xx temporary failure. The Symantec Brightmail Gateway MTA attempts to redeliver the message later.

  • The email results in an SMTP 5xx permanent failure. The Symantec Brightmail Gateway MTA sends a bounce message to the sender.

  • The Symantec Network Prevent server is slow in processing the SMTP connection. However, if the SMTP connection times out, bypass is triggered if no other Symantec Network Prevent servers are available.

Sensitive data can leave your site unscanned if Symantec Network Prevent servers are unreachable. If you disable bypass and Symantec Network Prevent is unavailable, all outbound email waits in the delivery queue which prevents timely delivery.

See About failure behavior with Symantec Network Prevent.

See Creating a policy to detect unscanned email if Symantec Network Prevent bypass is enabled.

To enable or disable bypass for Symantec Network Prevent

  1. In the Control Center, click Content > Settings > DLP Connect.

  2. To enable bypass, check Enable bypass when all DLP servers are unreachable.

    To disable bypass, uncheck Enable bypass when all DLP servers are unreachable.

  3. Click Save.