- How does Service Gateway SPS handle the Web Reputation Service (WRS) and File Reputation Service (FRS) query connection from the agent?
For the SPS WRS query, when the agent connects to the SPS WRS function, it will forward the query to the Smart Protection Network (SPN). For the SPS FRS query, when the agent connects to the SPS FRS function, it will query the local pattern, and perform as a standalone SPS server.
- Can I configure dangerous websites within Service Gateway?
Service Gateway SPS does not provide blacklist function, which sync the Suspicious Object Management's URL as WRS white/black list.
- Can Service Gateway SPS provide revert proxy for the Census/TrendX/Grid query?
Yes, Service Gateway SPS provides revert proxy for the Census/TrendX/Grid query.
- If the connection from Service Gateway to Trend Vision One is unstable, can it still provide reputation services with agents?
If the connection from Service Gateway to the Internet connection is working, the SPS query has no problem, otherwise the query may fail.
- How often are file reputation patterns updated?
Service Gateway SPS updates the Smart Scan pattern every 15 minutes.
- Why are there many SPS connection failed messages on the Deep Security Manager (DSM) / Cloud One console?
- When the Service Gateway upgrades it will reboot the machine, which may cause the agent to lose SPS query connection. It then reports the message to Deep Security Manager (DSM) / Cloud One console. (This is normal behavior.)
- If Service Gateway SPS version is upgraded, it will restart the service, which may cause the agent to lose query connection. It then reports the message to the Deep Security Manager (DSM) / Cloud One console. (This is normal behavior.)
- It has an unexpected error which caused the Service Gateway SPS to restart, or fail to provide service to agent. It then reports the message to the Deep Security Manager (DSM) / Cloud One console. For this, please collect the log and contact Trend Micro support to analyze the root cause.
- What is the Sizing Guide for Service Gateway Smart Protection Service?
At this point, there is no official release about the agent number. Below are some recommendations:
- Hardware Specifications:
Platform: ESXI 6.5ESXI or above
Hardware model: 8 vCPUs / 12GB memory / 500GB disk space - Software Specifications:
Only Smart Protection Service enable
- Recommended agents:
No more than 20K agents; you can install more service gateway to support more agents.
- Hardware Specifications:
- Why the "Smart Protection Services" installation button was gray out?
To install the SG-SPS/SG-LAU service, the customer needs to first upgrade their Service Gateway from version 2.0 to version 3.0. After the upgrade, they will be able to install the SG-SPS service.
- What does the Smart Protection Network Proxy feature do?
In order to reduce the firewall exception list for SPS, multiple FQDNs have been merged to signal FQDN.
Below is example of FQDN exception list from US region:In this case, you may request to add 2 FQDN into firewall exception list after enabling this function.