Athena SWG (Secure Web Gateway)

Athena SWG (formerly Internet Access Gateway) ensures visibility and control across the network, detecting risks like unauthorized access, non-compliant activities, and data leaks to manage endpoints.
{{ $t('productDocDetail.guideClickSwitch') }}
{{ $t('productDocDetail.know') }}
{{ $t('productDocDetail.dontRemind') }}
13.0.120
Athena SWG (Secure Web Gateway) {{ breadTitle }} User Manual Use Cases Comprehensive Configuration Configuration Ideas
{{sendMatomoQuery("Athena SWG (Secure Web Gateway)","Configuration Ideas")}}

Configuration Ideas

{{ $t('productDocDetail.updateTime') }}: 2025-12-29
  1. As the customer requires, deploy the IAG between the core switch and firewall in bridge mode. Set the bridge mode, bridge IP address, and system routes.
  1. Divide users into a common employee group and a director group.
  2. Select Enable Cross-L3 MAC Address Identification and set the IP address, MAC address, and OID of the L3 switch.
  3. Create two authentication policies to bind the IP addresses and MAC addresses of directors, add directors to the director group, bind the IP addresses and MAC addresses of common employees, and add common employees to the common employee group.
  4. For the common employee group, create an Internet access policy to control P2P and online streaming media applications during business hours and block access to illegal and unhealthy websites. Create an Internet access audit policy to audit applications, outbound content sent via HTTP, and mail content. Create an admission policy to audit IM messages.
  5. Create an Internet access audit policy to audit the Internet access behaviors of directors.
  6. Create a bandwidth assurance channel to allocate 60% to 100% of the channel bandwidth for accessing websites. Create a bandwidth limitation channel to allocate a maximum of 20% of the channel bandwidth to P2P applications, download applications, and online streaming media applications during business hours.