Xcitium Secure Internet Gateway

• Introduction To Xcitium Secure Internet Gateway
  • Purchase A License
  • Login To Secure Internet Gateway
  • Setup Options Explained
    • Tutorial To Add Networks To Secure Internet Gateway
    • Tutorial To Add Roaming Endpoints To Secure Internet Gateway
    • Tutorial To Add Mobile Devices
    • Tutorial To Deploy XSIG Virtual Appliances
    • Setup Wizard - Add Networks
    • Setup Local Resolver Virtual Machines And Import Sites
• The Admin Console
• The Dashboard
  • Web Overview
  • Security Overview
  • View Logs
• Add Networks, Roaming Endpoints And Mobile Devices
  • Add Networks
  • Add Roaming Endpoints
  • Add Mobile Devices
  • Manage Imported Sites And Virtual Appliances
    • Add Internal Networks
    • Add Internal Domains
• Manage XSIG Rules
  • Manage Security Rules
  • Manage Category Rules
  • Manage Domain Blacklist And Whitelist
  • Manage Block Pages
  • Manage Cloud Browser Settings
• Apply Policies To Networks And Roaming/Mobile Devices
• Domain Classification Requests
• View Protection Details By Customer
• Reports
• Read Testimonials
• View Account Details
• Appendix - Ports, IP Nos Allowed For SIG Roaming Agent And Local Resolver
• About Xcitium Security Solutions

Manage Cloud Browser Settings

• The cloud browser feature lets you specify that sites blocked by a security rule are instead opened inside a virtual environment.

• Virtual browsing sessions are isolated from the host operating system, so any malware downloaded cannot infect the device and/or the network.

• You can choose to open all sites from the security category in the virtual environment, or pick specific sub-categories. For example, you might want to outright block sites in the ‘Malware’ category, but grant virtual access to sites in the ‘Bitcoin related’ category.

 

Xcitium Cloud Browser - Table of Column Descriptions
Column Header	Description
Name	The label of the virtual session rule. This is shown in policy settings for you to select.
Navigation	Specify whether users can visit other sites besides the one that triggered the virtual session (the initial URL) Disabled – Users can only visit websites that are specified in the security rule on their policy. They cannot change the URL or visit sub-domains. Enabled – Users can visit sites in the security category and any sub-domains of those sites. Users cannot change the URL or visit other domains.
Time Quota	How long the virtual session remains open. The session will automatically end after this time period.
File Download	Specify whether users can save files from virtual sessions. Disabled – Users cannot download files from websites in virtual sessions Enabled - Users are allowed to save files in virtual sessions. To protect your devices and networks, enable file containment described below.
File Containment	Enabled - CSIG will scan downloaded files for viruses and other threats. Only known-safe files are allowed to run on the host machine. Unknown and malicious files are run in the container (sandboxed).
Remark	Comments about the virtual session rule.
Actions	Lets you update or delete a virtual session rule.

The following sections describe how to:

• Create a new cloud browser rule

• Edit a cloud browser rule

• Delete a cloud browser rule

Create a new cloud browser rule

• Click 'Configure' > 'Policy Settings' > 'Cloud Browser'

• Click 'Add a Cloud Browser Setting' at top-right

• Name and remark - Create a label for the rule and add any comments. Ideally, these should help you and others identify the purpose of the rule.

• Click 'Next' or 'Settings' to configure a virtual session setting

• Navigation -  Allow or block users from visiting sub-domains of the initial URL.
  

• Disabled - Users cannot browse anywhere other than the website that triggered the virtual session.

• Enabled - Users can browse the initial URL, the resources under the initial URL, and any sub-domains. Users cannot change the URL itself nor visit another website.

• Time Quote - Set how long the virtual session should run for. The session will end when this time elapses.

• File Download - Allow or block users from saving files in the virtual session. We recommend you ‘Scan and contain’ downloaded files if you enable this setting.

• Scan and contain the following files – Specify which types of files are scanned.

• Enabled – Select the file types that CSIG should scan.

• Click ‘Create’ when done

The rule is saved and listed in the CCB interface. You can now add this rule to the security section of a policy. Click here if you need help to create policies.

Edit a cloud browser rule

• To update a CCB rule, click the edit  button beside the rule

The 'Update – Xcitium Cloud Browser’ dialog is similar to the create CCB rule explained above.

• Modify the name, description and/or the settings as per your requirements.

• Click the 'Update' button.

Policies which feature the rule are dynamically updated with the rule’s new settings.

Delete a cloud browser rule

You cannot delete a virtual session rule that is currently active in a policy. You must first disable it in all policies before deleting it.

• Click the trash can icon   beside a CCB rule to delete it

• Click ‘OK’ in the confirmation box to remove the list