Enabling Cloud Tap in the Netskope UI

Enabling Cloud Tap in the Netskope UI

Once you have deployed the Cloud Tap stitcher, you can enable Cloud Tap in your Netskope tenant.

Note

This feature is in Beta. Contact Netskope Support or your Sales Representative to enable this feature for your tenant.

To enable Cloud Tap:

  1. Go to Settings > Security Cloud Platform > Cloud Tap.
  2. Under Cloud Tap Status, click to Enable or Disable the feature.
  3. For Traffic Storage Setup, provide the following for your cloud provider’s storage account:
    1. Select the Cloud Provider.
    2. Enter the following information for the bucket.

      Note

      You must also allow Netskope to have write access to the bucket.

      • For AWS, provide the bucket name, region, access key ID, and secret access key.
      • For GCP, provide the bucket name and upload the account credentials in JSON format. The maximum size allowed is 256 KB.
      • For Azure, provide the storage account name and the access key.
  4. (Optional) For Traffic Filters, create filter rules that define the traffic that Cloud Tap copies. You can configure the following filters:
    • Source Subnet: Select the source IP addresses for the endpoints to which the rule applies. Go to Policies > Network Locations to specify these IPs.
    • Destination IP: Specify the destination IP for the endpoints to which the rule applies. Go to Policies > Network Locations to specify these IPs.
    • Protocols and Destination Ports: Specify the TCP connections to which the rule applies. You can add a single port, multiple ports, or a port range. If no TCP ports are specified, then all traffic from all TCP ports is steered to Cloud Tap.
    • Access Method: Select the access method configurations to which the rule applies. You can choose GRE, IPSec, or Client as your access method, including IPSec/GRE sites.
    • User: Specify the users to which the rule applies. When a user is specified, only traffic from that user is steered to Cloud Tap.
    • Netskope POP: Select the Netskope NewEdge Data Center or POP to which the rule applies.
  5. Click Save.
Share this Doc

Enabling Cloud Tap in the Netskope UI

Or copy link

In this topic ...