Quick Note 026. Using the firewall of a Digi TransPort to redirect HTTP Traffic to a proxy server. Digi International Technical Support December 2011



Similar documents
Quick Note 53. Ethernet to W-WAN failover with logical Ethernet interface.

DSL-G604T Install Guides

Document No. FO1001 Issue Date: Draft: Work Group: FibreOP Technical Team October 1, 2013 Final:

Using SonicWALL NetExtender to Access FTP Servers

Cyclope Internet Filtering Proxy. - Installation Guide -

Document No. FO1004 Issue Date: Draft: Work Group: FibreOP Technical Team July 23, 2013 Final: Single Static IP Customer Owned LAN Router Support

Quick Note 055. Configure a Digi TransPort Router with NAT to a Passive FTP Server.

Firewall VPN Router. Quick Installation Guide M73-APO09-380

Multi-Homing Dual WAN Firewall Router

Figure 41-1 IP Filter Rules

Quick Note 36. Configuring SNMP Trap alerting on a TransPort router. TransPort Support March 2013

Chapter 6 Configuring the SSL VPN Tunnel Client and Port Forwarding

DLink-655 Router Configuration Guide for VoIP

Network Configuration Settings

Quick Note 041. Digi TransPort to Digi TransPort VPN Tunnel using OpenSSL certificates.

Quick Note 038. Upgrade Software options and/or VPN Licenses on a Digi Transport router.

Quick Note 34. Configuring Syslog alerting on a TransPort router. TransPort Support March 2013

Edgewater Routers User Guide

Streaming Media System Requirements and Troubleshooting Assistance

STATIC IP SET UP GUIDE VERIZON 7500 WIRELESS ROUTER/MODEM

Multi-Homing Security Gateway

Enabling NAT and Routing in DGW v2.0 June 6, 2012

Quick Note 040. Create an SSL Tunnel with Certificates on a Digi TransPort WR router using Protocol Switch.

How To Industrial Networking

Edgewater Routers User Guide

How To Load balance traffic of Mail server hosted in the Internal network and redirect traffic over preferred Interface

Quick Note 20. Configuring a GRE tunnel over an IPSec tunnel and using BGP to propagate routing information. (GRE over IPSec with BGP)

Elluminate Live! Access Guide. Page 1 of 7

Protecting the Home Network (Firewall)

Quick Note 32. Using Digi RealPort with a Digi TransPort Router. UK Support September 2012

Application Description

DOORKING SYSTEMS 1830 SERIES NETWORK WORKSHOP LAN APPLICATIONS ACCESS CONTROL SOLUTIONS LOCAL AREA NETWORK (LAN) CONNECTION REV 04.

Lab Configuring Access Policies and DMZ Settings

Digi Connect WAN Application Guide Using the Digi Connect WAN and Digi Connect VPN with a Wireless Router/Access Point

Option nv, Gaston Geenslaan 14, B-3001 Leuven Tel Fax Page 1 of 14

BROADBAND INTERNET ROUTER USER S MANUAL. Version Page 1 of 13 -

IP Filter/Firewall Setup

Using Remote Desktop Software with the LAN-Cell

Digi Connect Wan 3G Application Guide Update the firmware, backup and restore the configuration of a Digi Connect Wan 3G using a USB flash drive.

USG40HE Content Filter Customization

PPTP Server Access Through The

Darstellung Unterschied ZyNOS Firmware Version 4.02 => 4.03

DEPLOYMENT OF I M INTOUCH (IIT) IN TYPICAL NETWORK ENVIRONMENTS. Single Computer running I m InTouch with a DSL or Cable Modem Internet Connection

Elluminate Live! Access Guide. Page 1 of 7

Load Balance Mechanism

REQUIREMENTS AND INSTALLATION OF THE NEFSIS DEDICATED SERVER

Quick Guide of HiDDNS Settings (with UPnP)

DEPLOYMENT GUIDE Version 1.0. Deploying F5 with the Oracle Fusion Middleware SOA Suite 11gR1

Knowledgebase Solution

June 2013 v. 0.2

A Beginner s guide to send data to Device Cloud from a ZigBee Network

Technical Support Information

How to setup PPTP VPN connection with DI-804HV or DI-808HV using Windows PPTP client

Configuration Guide. How to set up the IPSec site-to-site Tunnel between the D-Link DSR Router and the Cisco Firewall. Overview

SETTING UP REMOTE ACCESS ON EYEMAX PC BASED DVR.

H0/H2/H4 -ECOM100 DHCP & HTML Configuration. H0/H2/H4--ECOM100 DHCP Disabling DHCP and Assigning a Static IP Address Using HTML Configuration

Application Note 2. Using the TCPDIAL & TCPPERM Commands to Connect Two TransPort router Serial Interfaces Over TCP/IP.

How To Configure Apple ipad for Cyberoam L2TP

NETWORK SET UP GUIDE FOR

Linking 2 Sites Together Using VPN How To

GlobeSurfer III Port Forwarding

Full Install Setup Guide Actiontec F2250 Gateway

Lab Configuring Access Policies and DMZ Settings

Broadband Phone Gateway BPG510 Technical Users Guide

APPLICATION NOTE. CC5MPX Digital Camera and IPn3Gb Cellular Modem 10/14. App. Note Code: 3T-Z

D-Link Central WiFiManager Configuration Guide

DEPLOYMENT GUIDE Version 1.1. Deploying F5 with Oracle Fusion Middleware Identity Management 11gR1

Port forwarding and viewing your IP camera from the internet

1.0 Basic Principles of TCP/IP Network Communications

N-CAP Users Guide Everything You Need to Know About Using the Internet! How Firewalls Work

Network Attached Storage System Recovery Procedure

Movie Cube. User s Guide to Wireless Function

How to Prevent Children from Browsing Improper Web Page within the Time Limit Step 1: Get the MAC Address of the Computer that Children Use

Front LEDs... 2 Rear Ports... 3 BASIC INSTALLATION... 4 Connecting Your Router... 5 Network Configuration... 6

Release Notes. SonicOS is the initial release for the Dell SonicWALL NSA 2600 network security appliance.

Configuring Global Protect SSL VPN with a user-defined port

Savvius Insight Initial Configuration

Enterprise Security Interests Require SSL with telnet server from outside the LAN

Investment Management System. Connectivity Guide. IMS Connectivity Guide Page 1 of 11

Technology Spotlight on Cellular Data Networking for SCADA system networks. Presented by Teamwork Solutions, Inc.

802.11n Wireless Broadband Router WNRT-625

F-Secure Messaging Security Gateway. Deployment Guide

Setting up VPN connection: DI-824VUP+ with Windows PPTP client

C-more Remote HMI App

Spam Marshall SpamWall Step-by-Step Installation Guide for Exchange 5.5

SSL-VPN 200 Getting Started Guide

WHITE PAPER Citrix Secure Gateway Startup Guide

Chapter 7 Troubleshooting

NETASQ MIGRATING FROM V8 TO V9

Smart Tips. Enabling WAN Load Balancing. Key Features. Network Diagram. Overview. Featured Products. WAN Failover. Enabling WAN Load Balancing Page 1

Preparing for GO!Enterprise MDM On-Demand Service

DEPLOYMENT GUIDE. Deploying the BIG-IP LTM v9.x with Microsoft Windows Server 2008 Terminal Services

P-660R-T1/T3 v2 Quick Start Guide

Accessing Remote Devices via the LAN-Cell 2

DEPLOYMENT GUIDE DEPLOYING THE BIG-IP LTM SYSTEM WITH MICROSOFT WINDOWS SERVER 2008 TERMINAL SERVICES

NEFSIS DEDICATED SERVER

Using a VPN with Niagara Systems. v0.3 6, July 2013

UIP1868P User Interface Guide

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

Configuration Manual English version

Transcription:

Quick Note 026 Using the firewall of a Digi TransPort to redirect HTTP Traffic to a proxy server Digi International Technical Support December 2011

Contents 1 Introduction... 3 1.1 Outline... 3 1.2 Assumptions... 3 1.3 Corrections... 3 1.4 Version... 3 2 TransPort Configuration... 4 2.1 Editing the Firewall... 4 3 Confirm HTTP traffic is being redirected to the proxy server... 8

1 INTRODUCTION 1.1 Outline This Quick Note will show how to use the firewall of a Digi TransPort to redirect all internet traffic from Wi-Fi clients to a content filtering service. 1.2 Assumptions This guide has been written for use by technically competent personnel with a good understanding of the communications technologies used in the product and of the requirements for their specific application. It also assumes a basic ability to access and navigate a Digi Transport router and configure it with basic routing functions. This Quick Note applies only to: Model: Digi Transport WR41 Other Compatible Models: Digi Transport VC7400 VPN Concentrator, WR, SR or DR. Firmware versions: 5.140 and later Configuration: This Quick Note assumes the devices are set to their factory default configurations. Most configuration commands are only shown if they differ from the factory default. It assumes that the cellular connection is up and running and using PPP 1. It also assumes that the Web Services account has been licensed from the provider and configured. 1.3 Corrections Requests for corrections or amendments to this Quick Note are welcome and should be addressed to: support@digi.com Requests for new Quick Notes can be sent to the same address. 1.4 Version Version Number: 1.0 Status: Initial Release Page 3

2 TRANSPORT CONFIGURATION 2.1 Editing the Firewall Browse to Configuration Security Firewall The current firewall rules will be displayed, the HTTP redirection rule should be inserted above any existing firewall rules. If the router does not have the default list of firewall rules, the rules can be downloaded from http://transport.digi.com/digi/firmware/standard_configs/fw.txt FTP the fw.txt file onto the router, click the Restore button on the Firewall configuration page, then continue with this Quick Note. This example uses 1.2.3.4. as the IP address of the proxy server, replace 1.2.3.4 with the IP address of the proxy server you wish to use. This example only redirects HTTP (port 80) traffic, HTTPS (port 443) will not be redirected. Click Insert at the top of the rule set. This will display a text box that is used to enter a new rule. This first rule will be a comment to describe the firewall rule that will be added next. Comment lines start with a # (hash) symbol. Type in the following text: # Redirect all HTTP (port 80) traffic to the proxy server at 1.2.3.4 Click OK Page 4

The second rule is the HTTP redirection rule. Click on the second from top Insert button. This will display a firewall text entry box below the comment line. Type in the following text: pass out break end proto tcp from any to any port=http -> to 1.2.3.4 inspect-state Click OK, then click Save. Page 5

Note: Proxy servers often listen on a port number other than 80. For example, a common proxy server listens on port 3128. If the proxy server to be used listens on a port other than 80, the following rules should be used instead: # Redirect all HTTP (port 80) traffic to the proxy server at 1.2.3.4 listening on port 3128 pass out break end proto tcp from any to any port=http -> to 1.2.3.4 port=3128 inspect-state The firewall now needs to be activated on the WAN interface, scroll down and tick/check the box for the WAN interfaces in use. This will most likely be PPP 1 but can vary depending on the model of the router and the WAN interfaces configured (DSL, Cellular or Ethernet). Page 6

Browse to Administration - Save configuration Click Save Page 7

3 CONFIRM HTTP TRAFFIC IS BEING REDIRECTED TO THE PROXY SERVER Using a PC with the TransPort router as its default gateway, open the web browser and try to access any website. As long as the web site requested passes the content filtering rules of the proxy server, the page will be displayed. If a restricted site is attempted to be accessed, a content filtering information message is usually returned by the proxy server and displayed in the web browser. To confirm the HTTP traffic is being redirected to the proxy server, open the TransPort router web GUI and browse to: Configuration - Security > Firewall The hit counter for redirection rule should be a number other than zero, to indicate the rule has been hit. Every time a web page is accessed via the proxy server, this hit counter number will increase. Page 8

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information