What is ICAP McAfee?

What is ICAP McAfee?

Internet Content Adaptation Protocol (ICAP) enables administrators to off-load malware scanning to a dedicated server to improve security and overall performance. DATA SHEET. McAfee Web Gateway. 1.

How do I setup an ICAP server?


  1. Open the Web Gateway manager.
  2. Select Configuration.
  3. Select the Appliance Name you want to enable the ICAP Server on.
  4. Select Proxies and scroll down for ICAP options.
  5. Select the Enable ICAP Server checkbox.
  6. Optional: If you need to change the default settings, select the needed Listener and click Edit.

What is ICAP protocol used for?

The Internet Content Adaptation Protocol (ICAP) is a lightweight HTTP-based protocol used to optimize proxy servers, which frees up resources and standardizes how features are implemented.

How do ICAP servers work?

The Internet Content Adaptation Protocol (ICAP) is designed to offload the processing of Internet-based content to dedicated servers. ICAP helps free up resources and standardize how features are implemented. A proxy server, such as WebSEAL, can be configured to pass client requests and responses through ICAP servers.

What is ICAP in FortiGate?

Internet Content Adaptation Protocol (ICAP) is an application layer protocol that is used to offload tasks from the firewall to separate, specialized servers. Responses from the ICAP server are returned to the FortiGate, and then forwarded to their destination. By default, ICAP is not visible in the GUI.

What is the role of ICAP in mobile computing?

ICAP is used to extend transparent proxy servers. This frees up resources and standardizes the implementation of new features. ICAP performs content manipulation as a value added service for the appropriate client HTTP request or HTTP response.

How does ICAP scanning work?

The ICAP AV server scans the contents and prompts JSCAPE MFT Server if a malware is detected. This will in turn raise an Antivirus Violation event. 4. JSCAPE MFT Server can then respond to the event (e.g. delete the file or quarantine the file) using a preconfigured trigger action.

Why do you need a secure web gateway?

A secure web gateway is a security solution that prevents unsecured traffic from entering an internal network of an organization. It is used by enterprises to protect their employees and users from accessing and being infected by malicious Web traffic, websites, viruses and malware.

What is the difference between gateway and firewall?

A gateway is used to link two separate networks together, allowing users to communicate across several networks. In contrast, a firewall secures a network by deciding which data packets are allowed to pass through a network.

What is McAfee web gateway 7.x Internet content adaptation protocol ( ICAP )?

Environment McAfee Web Gateway 7.x Internet Content Adaptation Protocol (ICAP) provides a standard, lightweight mechanism to submit content for further specified action. Web Gateway configured as an ICAP Server can receive files from any ICAP Client and perform a full range of malware analysis and scanning.

Can a web gateway be used as an ICAP server?

Web Gateway configured as an ICAP Server can receive files from any ICAP Client and perform a full range of malware analysis and scanning. Also, if you configure Web Gateway as an ICAP Client, it can send files for additional scanning to devices such as a Data Loss Prevention appliance.

What do you need to know about McAfee web gateway?

McAfee® Web Gateway security software is designed to protect enterprises against web-borne malware attacks. McAfee Web Gateway can be configured to protect against malware downloads from external sites, or it can be configured to protect an internal website against malicious uploads from an external user.

Which is an example of an ICAP server ruleset?

Attached is a heavily modified version of Erik Elsasser’s original java based ICAP test client. Also attached is an example ICAP server ruleset that can be used in conjunction with this client or others. The code could be much cleaner, but seems to be fully functional in limited testing.