Table of Contents
Advertisement
MIME types whitelist/blacklist
In Symantec Gateway Security 5000 Series v2.0.1, you can configure the MIME types blacklist to act as
a whitelist through an advanced option, httpd.mimeblacklist. If you use this advanced option, then
upgrading sets the Allow/Deny MIME types list setting based on the option's value:
After upgrading, verify that the new option values are appropriate.
File Extensions whitelist/blacklist
In Symantec Gateway Security 5000 Series v2.0.1, you can configure the file extensions whitelist to act
as a blacklist through an advanced option, httpd.extensionblacklist. If you use this advanced option,
then upgrading sets the Allow/Deny File Extensions list setting based on the option's value:
After upgrading, verify that the new option values are appropriate.
Dynamic Document Review
Dynamic Document Review (DDR) is a new Symantec Gateway Security 5000 Series v3.0.1 feature.
When a Symantec Gateway Security 5000 Series v3.0.1 user attempts to access a Web site, the security
gateway performs a dynamic document review of the content of the Web site before the information is
passed to the user. Each page and header is scanned to evaluate the information in real time against
dictionaries that contain trigger words and phrases.
For a full description of DDR, see Symantec Gateway Security 5000 Series v3.0.1 Administration Guide.
After upgrading, if you do not want to use DDR, adjust your content filtering policies, and disable
Dynamic Document Review.
Log files
You must back up all Symantec Gateway Security 5000 Series v2.0.1 log files before you upgrade, or
they will be erased. The Symantec Gateway Security 5000 Series v3.0.1 log viewer does not show logs
from previous product versions. To view Symantec Gateway Security 5000 Series v2.0.1 log files, you
must either maintain a Symantec Gateway Security 5000 Series v2.0.1 appliance for the purposes of log
viewing, or flatten the logs to view them in another application. Remote logfile utility and flatten
(shipped with Symantec Gateway Security 5000 Series v3.0.1) are backwards-compatible, working on
both Symantec Gateway Security 5000 Series v2.0.1 and Symantec Gateway Security 5000 Series v3.0.1
log files.
Before upgrading, use FTP or the Symantec Gateway Security 5000 Series v2.0.1 remote logfile utility
to back up all log files.
After upgrading, if you need to view old Symantec Gateway Security 5000 Series v2.0.1 log files, use
remote logfile utility or flatten.
loglevel.cf
In Symantec Gateway Security 5000 Series v2.0.1, the loglevel.cf file is used to customize notifyd
logging. The settings in this file are not configurable using the SGMI, and are not included in the
backup or upgrade. In Symantec Gateway Security 5000 Series v3.0, loglevel.cf is replaced by
notifysingle.cf. Upgrading does not convert loglevel.cf to notifysingle.cf.
Post-upgrade tasks for upgraded Symantec Gateway Security 5000 Series v2.0.1 configurations
Allow for 0
Deny for 1
Allow for 0
Deny for 1
Upgrading appliance software and migrating configurations
63
Advertisement
Table of Contents
