Skip Navigation
  1. BlackBerry Docs
  2. Cylance Endpoint Security
  3. Cylance Endpoint Security Overview and Architecture
  4. What is CylanceGATEWAY?
  5. How CylanceGATEWAY sends data using Work Mode
  6. Data flow: Accessing an application or content server on your private network

Data flow: Accessing an application or content server on your private network

This data flow describes how data travels between devices and servers on your private networks using
CylanceGATEWAY
.
This image demonstrates the flow of data when using CylanceGATEWAY to access an app or content server on your private network with a multiple private network configuration.
The above diagram shows the following sequence.
  1. The user enables Work Mode and opens an app and attempts to access a resource on one of your private networks.
  2. The
    CylancePROTECT Mobile
     app or the
    CylanceGATEWAY
     agent on the device routes the connection through a secure tunnel to
    CylanceGATEWAY
     in the
    BlackBerry Infrastructure
    .
  3. CylanceGATEWAY
     performs the following actions:
    1. Determines, based on the access control list (ACL) rules, whether the user has access to that location on the private network.
    2. If the user has access, routes the connection through a secure tunnel to the
      CylanceGATEWAY Connector
      .
  4. The
    CylanceGATEWAY Connector
     routes the connection to its destination on the private network.
  5. The
    CylanceGATEWAY Connector
     applies Network Address Translation (NAT) to flows with a destination on your private network. The connector provides additional information on UDP and TCP flows allowing you to identify the source IP address and port number of an event that has been blocked or identified as potentially malicious. You cannot access the
    CylanceGATEWAY Connector
     endpoint from the private network using remote IT tools (for example, Remote Desktop Connection).