Scribd Logo
Upload

Welcome to Scribd!

  • Parent Proxy Deployment Scenarios

    Uploaded by

    angelinos
    4 views5 pages
    cyberoam

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    cyberoam

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    4 views5 pages

    Parent Proxy Deployment Scenarios

    Uploaded by

    angelinos
    cyberoam

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 5

    Parent Proxy Deployment scenarios

    Parent proxy Deployment scenarios

    Applicable to versions: version 9.4.1 build 2


    In certain countries it is required that the Internet access be routed through a governmentapproved proxy server. In this situation, it is necessary that the security appliance routes
    the user access request through the government-approved proxy server by.
    Apart from this, certain proxy servers are used for caching web contents and it is required
    that the user request is routed through such proxy servers.
    In above mentioned cases, it is necessary to configure security appliance as a proxy
    server. In other words, the security appliance must act as a proxy server for another proxy
    server.
    The Proxy server through which the security appliance routes the user request is called
    Parent proxy. Alternate popular terms used for parent proxy are Upstream proxy and
    Forward Proxy.
    Above mentioned needs are satisfied by Cyberoam by simply configuring the Parent proxy
    IP address in Cyberoam.

    Parent Proxy Deployment Scenarios


    Parent proxy can be deployed in the:

    Internet

    Internal network (LAN or DMZ)

    Case 1: Parent proxy deployed in the Internet


    When Parent proxy is deployed in the Internet, Cyberoam is to be configured as a proxy
    server for the LAN users. Cyberoam routes all the outbound requests through parent
    proxy.

    Parent Proxy Deployment scenarios

    Figure 1 - Parent proxy deployed in the Internet

    Log on to Web Admin Console, go to System > HTTP Proxy > Configure HTTP Proxy and
    configure parent proxy IP address and communication port.

    Parent Proxy Deployment scenarios

    Case 2: Parent proxy deployed in LAN/DMZ


    When Parent proxy is deployed in the LAN or DMZ, Cyberoam is to be configured as a
    proxy server for the LAN users. Cyberoam routes all the outbound requests through parent
    proxy.

    Figure 2 - Parent Proxy deployed in DMZ

    Figure 3 - Parent Proxy deployed in LAN

    Parent Proxy Deployment scenarios

    Configuration (when Parent proxy is deployed in LAN)


    Log on to Web Admin Console
    Step 1. Go to System > HTTP Proxy > Configure HTTP Proxy and configure Upstream
    proxy IP address and communication port.

    Step 2. Configure firewall rule


    a. Create host for Parent proxy
    b. Create LAN to WAN firewall rule for Parent proxy
    To prevent routing loop, do not apply Internet access policy (IAP) and HTTP
    scanning.

    Parent Proxy Deployment scenarios

    c. Create LAN to LAN firewall rule

    If parent proxy is deployed in DMZ, create DMZ to WAN and DMZ to DMZ firewall rule.

    Document version 1.0-31/08/2008

    You might also like