https://community.checkpoint.com/t5/Firewall-and-Security-Management/Sandblast/m-p/73983#M13221 <P>Hi all,</P><P>I understand that Sandblast is a technology to protect internal corporate users from file attachments, and it seems that it needs a dedicated device for it e.g. TE 2000X.</P><P>However, if I have an external facing web-server, and there will be public users from the Internet "uploading" files to this new web server.</P><P>Should I use Sandblast to protect the web server? Or is there another technology i should use to scan / filter malicious attachment being uploaded by users from the Internet to my Web-server?</P><P>Cheers,</P><P>Hunt</P> Mon, 03 Feb 2020 03:13:40 GMT HUNT_LEE 2020-02-03T03:13:40Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Sandblast/m-p/73983#M13221 <P>Hi all,</P><P>I understand that Sandblast is a technology to protect internal corporate users from file attachments, and it seems that it needs a dedicated device for it e.g. TE 2000X.</P><P>However, if I have an external facing web-server, and there will be public users from the Internet "uploading" files to this new web server.</P><P>Should I use Sandblast to protect the web server? Or is there another technology i should use to scan / filter malicious attachment being uploaded by users from the Internet to my Web-server?</P><P>Cheers,</P><P>Hunt</P> Mon, 03 Feb 2020 03:13:40 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Sandblast/m-p/73983#M13221 HUNT_LEE 2020-02-03T03:13:40Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Sandblast/m-p/73986#M13222 <P>SandBlast technologies are also available as a Cloud service with API access.</P> <P>For more information about the API please refer:</P> <P><A href="https://sc1.checkpoint.com/documents/TPAPI/CP_1.0_ThreatPreventionAPI_APIRefGuide/html_frameset.htm" target="_blank">https://sc1.checkpoint.com/documents/TPAPI/CP_1.0_ThreatPreventionAPI_APIRefGuide/html_frameset.htm</A></P> Mon, 03 Feb 2020 07:06:14 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Sandblast/m-p/73986#M13222 Chris_Atkinson 2020-02-03T07:06:14Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Sandblast/m-p/74364#M13223 You only need a dedicated appliance if for some reason emulation via cloud is not desirable.<BR />In either case, integration via API may make sense for uploaded files.<BR />You can use the API either with the cloud or a local Threat Emulation appliance. Thu, 06 Feb 2020 17:57:43 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Sandblast/m-p/74364#M13223 PhoneBoy 2020-02-06T17:57:43Z