How To Configure Endpoint LAN Exclusions
- Article Number: 000005954
- Products: Forcepoint DLP, TRITON AP-DATA
- Version: 8.7, 8.6, 8.5, 8.4, 8.3, 8.2, 8.1, 8.0
- Last Published Date: August 21, 2020
Notes & Warnings
Note This configuration will still analyze traffic from the Data Endpoint LAN channel, but no incidents will be generated, thus this should only be used to reduce incident generation and not to increase performance of the Data Endpoint.
If multiple Data Endpoint LAN rules are in use, any exceptions would need to be added to each rule in use to prevent inconsistent incident generation.
If using a full UNC path rather than a single share or directory for a share path, three entries per directory must be added to the File Type Classifier to account for the three ways a user can access a share (IP, machine name, FQDN). For example:
How do I configure Forcepoint DLP (formerly known as Websense TRITON - Data Security) to exclude individual shares from being scanned by the Data Endpoint for the LAN Channel?
Adding directories in the file type properties classifier will allow Forcepoint to exclude shares and directories on the Endpoint LAN channel.