ProxySG TechBrief Implementing a Reverse Proxy



Similar documents
HTTPS HTTP. ProxySG Web Server. Client. ProxySG TechBrief Reverse Proxy with SSL. 1 Technical Brief

ProxySG TechBrief Downloading & Configuring Web Filter

Reverse Proxy with SSL - ProxySG Technical Brief

ProxySG TechBrief Enabling Transparent Authentication

ProxySG TechBrief LDAP Authentication with the ProxySG

Downloading and Configuring WebFilter

LDAP Authentication and Authorization

Implementing Exception Pages

Executive Summary. What is Authentication, Authorization, and Accounting? Why should I perform Authentication, Authorization, and Accounting?

Active Directory Integration with Blue Coat

Best Practices for Controlling Skype within the Enterprise. Whitepaper

Implementing SSL Offload with JAGUAR Ver.1.0

Best Practices for Controlling Skype within the Enterprise > White Paper

Blue Coat Systems. Client Manager Redundancy for ProxyClient Deployments

ProxySG ICAP Integration

Blue Coat Security First Steps Solution for Controlling HTTPS

Application Layer vs. TCP Layer WAN Optimization > White Paper

BusinessObjects Enterprise XI Release 2

How to configure the Panda GateDefender Performa explicit proxy in a Local User Database or in a LDAP server

Reverse Proxy Guide. Version 2.0 April 2016

Secure Web Appliance. Reverse Proxy

SuperLumin Nemesis. Administration Guide. February 2011

Application Note. Configuring McAfee Firewall Enterprise for McAfee Web Protection Service

SECURE ICAP Gateway. Blue Coat Implementation Guide. Technical note. Version /12/13. Product Information. Version & Platform SGOS 6.

Outlook Profile Setup Guide Exchange 2010 Quick Start and Detailed Instructions

Configuring Apache HTTP Server as a Reverse Proxy Server for SAS 9.3 Web Applications Deployed on Oracle WebLogic Server

Blue Coat Security First Steps Solution for Deploying an Explicit Proxy

Security Provider Integration Kerberos Authentication

Deploying the SSL Proxy

White Paper. Enterprise IPTV and Video Streaming with the Blue Coat ProxySG >

User Identification and Authentication

Blue Coat Security First Steps Solution for Integrating Authentication

Contact Information. Document Number: Document Revision: SSL Proxy Deployment Guide SGOS 5.1.4

Trouble Shooting SiteManager to GateManager access via a corporate Intranet

Sentral servers provide a wide range of services to school networks.

Managing Qualys Scanners

Blue Coat Security First Steps. Solution for HTTP Object Caching

Monitoring Nginx Server

How to set up Outlook Anywhere on your home system

Reverse Proxy for Trusted Web Environments > White Paper

WAN Optimization for Microsoft SharePoint BPOS >

Blue Coat Systems. Reference Guide. SSL Proxy. For SGOS 5.3.1

Transparent Cache Switching Using Brocade ServerIron and Blue Coat ProxySG

Blue Coat Security First Steps Transparent Proxy Deployments

Integrated Citrix Servers

How-to setup a proxy in the cloud

ISA Server Plugins Setup Guide

Linux Squid Proxy Server

Dynamic DNS How-To Guide

Deploying F5 to Replace Microsoft TMG or ISA Server

7.0 Self Service Guide

McAfee Gateway 7.x Encryption and IronPort Integration Guide

Cyclope Internet Filtering Proxy. - Installation Guide -

V Series Rapid Deployment Version 7.5

SOLARWINDS ORION. Patch Manager Evaluation Guide for ConfigMgr 2012

Blue Coat Systems. Reference Guide. SSL Proxy. For SGOS 5.5.x and later

Configuring SonicWALL TSA on Citrix and Terminal Services Servers

Configuring Network Load Balancing with Cerberus FTP Server

Version 0.1 June Xerox WorkCentre 7120 Fax over Internet Protocol (FoIP)

BlackShield ID Agent for Remote Web Workplace

MadCap Software. Upgrading Guide. Pulse

SafeNet Authentication Service

Proctor Caching User Guide

REQUIREMENTS AND INSTALLATION OF THE NEFSIS DEDICATED SERVER

Sage Accpac CRM 5.8. Self Service Guide

MultiSite Manager. Setup Guide

Windows XP Exchange Client Installation Instructions

Websense Web Security Gateway: Integrating the Content Gateway component with Third Party Data Loss Prevention Applications

Configuration Example

Web Security Firewall Setup. Administrator Guide

Load Balancing Microsoft Sharepoint 2010 Load Balancing Microsoft Sharepoint Deployment Guide

Creating a Secure Web Service In Informatica Data Services

DameWare Server. Administrator Guide

Immersion Day. Creating an Elastic Load Balancer. Rev

Pass Through Proxy. How-to. Overview:..1 Why PTP?...1

Salesforce Integration

DualShield. for. Microsoft TMG. Implementation Guide. (Version 5.2) Copyright 2011 Deepnet Security Limited

Setting up Hyper-V for 2X VirtualDesktopServer Manual

Configuring PPP And SIP

Option nv, Gaston Geenslaan 14, B-3001 Leuven Tel Fax Page 1 of 14

2692 : Accelerate Delivery with DevOps with IBM Urbancode Deploy and IBM Pure Application System Lab Instructions

Apache Server Implementation Guide

Microsoft Lync Server 2010

Resonate Central Dispatch

Integrating a Hitachi IP5000 Wireless IP Phone

How do I set up a branch office VPN tunnel with the Management Server?

Blue Coat WebFilter >

FEC Secure IPSec Client

Creating a User Profile for Outlook 2013

Customer Tips. Configuration and Use of the MeterAssistant Option. for the user. Purpose. Xerox Device Configuration. Xerox Multifunction Devices

FortiGate Multi-Threat Security Systems I

This presentation covers virtual application shared services supplied with IBM Workload Deployer version 3.1.

Avira Management Console AMC server configuration for managing online remote computers. HowTo

Configuration Example

Name Services (DNS): This is Quick rule will enable the Domain Name Services on the firewall.

Configuring IBM Cognos Controller 8 to use Single Sign- On

1 You will need the following items to get started:

PLATO Learning Environment System and Configuration Requirements. for workstations. April 14, 2008

Setting up Hyper-V for 2X VirtualDesktopServer Manual

Configuring IBM HTTP Server as a Reverse Proxy Server for SAS 9.3 Web Applications Deployed on IBM WebSphere Application Server

Transcription:

ProxySG TechBrief Implementing a Reverse Proxy What is a reverse proxy? The Blue Coat ProxySG provides the basis for a robust and flexible Web communications solution. In addition to Web policy management, content filtering, blocking, web content virusscanning and network protection, companies can implement what is known as a reverse proxy to front end their Web applications. Implementing a reverse proxy with a ProxySG has the following advantages: The ProxySG terminates the session with the client and establishes another session with the Web server The Web server only sees the IP address of the ProxySG An administrator can implement granular policies with authentication, authorization and logging A company can achieve higher performance benefits with caching A ProxySG with flexible advanced forwarding architecture coupled with caching provides organizations a best of breed solution to leverage their network. Implementing a reverse proxy solution with Blue Coat Reverse proxy with the Blue Coat ProxySG provides flexibility to network administrators in defining scalable proxy hierarchy designs. The following key features can be implemented: Forwarding to an upstream Web Server Load balancing of multiple Web Servers L3, L4 and L7 health checks of the upstream Web Servers There are three steps to implement Advanced Forwarding for each of these designs: 1. Configure Advanced Forwarding hosts 2. Configure Advanced Forwarding rules 3. Test the configuration 1 Technical Brief

The following diagram presents the network layout of this solution HTTP HTTP Client ProxySG WEB Server Client requests http://www.foo.com ProxySG requests http://www.server.com Step 1 Configuring Advanced Forwarding Host To install the advanced forwarding configuration, open the web GUI interface on the ProxySG. Go to Configuration Forwarding Forwarding Hosts Click on install for Install Local File from: Text Editor 2 Technical Brief

Into the text editor, paste the configuration: Fwd_host <webserveralias> <ip_address or hostname of the web server> http=<server port> server Step 2 Configure Advanced Forwarding rules The advanced forwarding rules are implemented via the Visual Policy Manager. Open the Visual Policy Manager 3 Technical Brief

Create a Forwarding Layer called forwarding Then, create a rule with the following attributes and shown in the following screens: Source= any Destination = url=www.foo.com (what users will type in their browsers ie url seen by users) Service = any Action = Select Forwarding Time = any Tracking = none 4 Technical Brief

5 Technical Brief

6 Technical Brief

Click on OK. 7 Technical Brief

Click OK twice. 8 Technical Brief

Finally, click on Install Policy In this example the local ProxySG is 195.149.44.49 and the web server www.server.com is 195.149.44.201. All requests not in cache for www.foo.com will be forwarded to the web server at 195.149.44.201. Step 3 Test your configuration To validate that Reverse Proxy is working, enable URL logging Blue Coat Management GUI Access Logging Category Default Facility check Main facility Look at the Security Appliance s current logs Blue Coat Statistics GUI Access Logging category Log Facility tab Select Main Observe the last couple entries so you can recognize the fields DEFAULT_PARENT/WebserverIPAddress 9 Technical Brief

Copyright 2003 Blue Coat Systems, Inc. All rights reserved worldwide. No part of this document may be reproduced by any means nor translated to any electronic medium without the written consent of Blue Coat Systems, Inc. Specifications are subject to change without notice. Information contained in this document is believed to be accurate and reliable, however, Blue Coat Systems, Inc. assumes no responsibility for its use, Blue Coat is a registered trademark of Blue Coat Systems, Inc. in the U.S. and worldwide. All other trademarks mentioned in this document are the property of their respective owners. Contact Blue Coat Systems 1.866.30BCOAT 408.220.2200 Direct 408.220.2250 Fax www.bluecoat.com 10 Technical Brief

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information