Configure Proxy Settings for a Director Node in Transparent Bridge Mode

To configure proxy settings for a director node in Transparent Bridge mode, configure the director role for it, as well as port redirects and proxy ports. The director role is configured by giving the node a priority value > 0.

This is part of the procedure for configuring the Transparent Bridge mode. For on overview of the complete procedure, see Configure the Transparent Bridge Mode.

1. You are still configuring the appliance you have selected from the appliance tree under Configuration | Appliances to run as director node. Click Proxies on the left now.

2. Under Network Setup, select Transparent Bridge.
   
   The Transparent Bridge settings appear below the Network Setup settings. Configure these settings as described in the following steps.
   
   When modifying these settings later on, you can also review their description under Transparent Bridge Settings.

3. Configure one or more port redirects to have requests sent from clients of Secure Web Gateway be redirected to a particular port.

   1. Under Port redirects, click Add.

   2. Configure the following for a new port redirect that applies to connections under HTTP or HTTPS:

      • Protocol name — http
        
        http covers connections under both HTTP and HTTPS.

      • Original destination ports — 80. 443
        
        These are the default destination ports. They cover connections under both HTTP and HTTPS.
        
        If you want to filter also HTTPS traffic, you must enable the HTTPS Scanning rule set, which is by default provided on the rule set tree, but not enabled.

      • Destination proxy port — 9090
        
        9090 is the default proxy port on an appliance.
        
        If you need to use other ports due to the requirements of your network, change these settings as needed.
        
        To configure a port direct for connections under FTP, select this protocol. Default ports are then preconfigured, which you can change as needed.

4. Set Director priority to a value > 0, for example, 99.

5. In the Management IP field, type the IP address you specified for network interface ibr0 when configuring the network interface settings.
   
   To review this part of the configuration procedure, see Configure Network Interface and Central Management Settings for a Director Node in Transparent Bridge Mode.

6. Configure IP spoofing as needed.

7. Configure proxy ports for the director node.

     a. Under HTTP proxy port, make sure Enable HTTP proxy is selected.
 
         This setting is selected by default. An entry for port 9090 is also preconfigured on the HTTP Port Definition List.

         You can change this port as needed. Clicking Add opens the Add HTTP Proxy Port window, which allows you to add more proxy ports.

     b. To configure one or more FTP proxies, select Enable FTP Proxy under FTP Proxy.

          Entries for FTP control port 2121 and FTP data port 2020  are preconfigured on the FTP Port Definition List.

  8. Click Save Changes.

You have now configured proxy settings for a director node in Transparent Bridge mode.

Continue with configuring proxy settings for an appliance you want to include as a scanning node in the cluster. For information about how to configure these settings, see Configure Proxy Settings for a Scanning Node in Transparent Bridge mode.