Proxy settings

If your network uses a proxy, you can configure Deep Security to use it instead of the default port numbers.

Proxy Server Use

  • Primary Security Update Proxy used by Agents, Appliances, and Relays: Select a proxy server that the Deep Security Relays will use to connect to the Update Source specified in the Relays area on the Updates tab (either a Trend Micro Update Server or Other Update Source).
    By default, agents/appliancesThe Deep Securty Agent and Deep Security Virtual Appliance are the components that enforce the Deep Security policies that you have defined. Agents are deployed directly on a computer. Appliances are used in VMware vSphere environments to provide agentless protection. They are not available with Deep Security as a Service. get the Anti-Malware components of their Security Updates from Deep Security Relays. However, if Agents/Appliances cannot connect to their assigned Relays, and the Allow Agents/Appliances to download Security Updates from this source if Deep Security Relays are not available option is selected, Agents/Appliances will also use this proxy.
  • Deep Security Manager (Software Updates, CSSS, Product Registration and Licensing): Select a proxy that the Deep Security Manager will use to connect to Trend Micro to validate your Deep Security licenses, to connect to the Certified Safe Software Service (a feature of the Integrity Monitoring module), and for connecting to Amazon Web Services (AWS) and VMware vCloud Cloud Accounts.
    Changes to the proxy settings for CSSS will not take effect until the Deep Security Manager and all Manager nodes are restarted. (You must restart the services manually.)
  • Deep Security Manager (Cloud Accounts - HTTP Protocol Only): Select a proxy for Deep Security Manager to use when connecting to cloud-based instances that have been added to Deep Security Manager using the "Add Cloud Account" procedure.
  • Primary Security Update Proxy used by Agents, Appliances, and Relays: Select a proxy server that the Deep Security Relays will use to connect to the Update Source specified in the Relays area on the Updates tab (either a Trend Micro Update Server or Other Update Source).
    By default, Agents/Appliances get the Anti-Malware components of their Security Updates from Deep Security Relays. However, if Agents/Appliances cannot connect to their assigned Relays, and the Allow Agents/Appliances to download Security Updates from this source if Deep Security Relays are not available option is selected, Agents/Appliances will also use this proxy.
  • Deep Security Manager (Software Updates, CSSS, Product Registration and Licensing): Select a proxy that the Deep Security Manager will use to connect to Trend Micro to validate your Deep Security licenses, to connect to the Certified Safe Software Service (a feature of the Integrity Monitoring module), and for connecting to Amazon Web Services (AWS) and VMware vCloud Cloud Accounts.
    Changes to the proxy settings for CSSS will not take effect until the Deep Security Manager and all Manager nodes are restarted. (You must restart the services manually.)
  • Deep Security Manager (Cloud Accounts - HTTP Protocol Only): Select a proxy for Deep Security Manager to use when connecting to cloud-based instances that have been added to Deep Security Manager using the "Add Cloud Account" procedure.

You can view and edit the list of available proxies on the Proxies tab on the Administration > System Settings screen.

After you select a proxy, you will need to restart any agents that will be using it.

Proxy Servers

Define the proxy servers that will be available for use by various Deep Security clients and services (for example, the proxy servers for Smart Protection in Computer or Policy editorYou can change these settings for a policy or for a specific computer. To change the settings for a policy, go to the Polices page and double-click the policy that you want to edit (or select the policy and click Details). To change the settings for a computer, go to the Computers page and double-click the computer that you want to edit (or select the computer and click Details). > Anti-Malware > Smart Protection).

The following table lists the proxy protocols supported by the Deep Security services and clients:

Service Origin HTTP Support SOCKS4 Support SOCKS5 Support
Software Updates DSM/DSR Yes Yes Yes
Security Updates DSA/DSVA/DSR Yes Yes Yes
Licensing and product registration DSM Yes Yes No
Certified Safe Software Service DSM Yes No No
Smart Feedback DSA/DSR Yes Yes Yes
Amazon AWS Cloud Account DSM Yes No No
VMware vCloud Cloud Account DSM Yes No No
Microsoft Azure Cloud Account DSM Yes No No
Service Origin HTTP Support Socks4 Support SOCKS5 Support
Rules update Agent Yes Yes Yes
License update Manager Yes Yes No