Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Firewall Redirect: Forwarding Traffic to the Forcepoint Cloud Service
Firewall Redirect: Forwarding Traffic to the Forcepoint Cloud Service
Firewall Redirect | Forcepoint Web Security Cloud | November 2018
Firewall redirection is a simple and effective method for sending web traffic to the cloud service. Firewall redirection is easy to configure and maintain, with no configuration required on client machines - traffic is redirected transparently. Firewall redirection works for both HTTP and HTTPS traffic. NTLM and basic authentication are supported.
Firewall redirection is well suited for:
*
*
*
 
Important 
This document includes the following topics:
*
*
*
*
*
*
*
Supported devices
The following devices have been tested and verified to support firewall redirection to the Forcepoint cloud service:
*
*
*
*
*
*
*
.
Note 
Cisco ISR and Palo Alto devices do not support firewall redirection to the Forcepoint cloud service.
Configuration for firewall redirection
The requirements for using firewall redirect are as follows:
*
*
*
*
*
 
Note 
The following diagram shows an edge device redirecting traffic to a Forcepoint data center. Port 80 (HTTP) traffic is forwarded to port 8081, while port 443 (HTTPS) traffic is forwarded to port 8443. Traffic is forwarded to the IP address of the geographically closest data center.
Preventing data leakage
As a best practice, Forcepoint recommends that you lock down your firewall to prevent traffic leakage via different protocols and ports. In particular, Google Chrome can default to the experimental QUIC protocol, which uses UDP on port 443. We recommend that you block UDP traffic on port 443 in order to force traffic over TCP. For more information, see the Knowledge Base article Google QUIC protocol is not supported by the Forcepoint cloud service.
Device configuration examples
Detailed configuration examples for the following devices can be found in the Forcepoint Knowledge Base:
*
*
*
*
*
You must be logged in to My Account to see these articles.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Firewall Redirect: Forwarding Traffic to the Forcepoint Cloud Service
Copyright 2018 Forcepoint. All rights reserved.