Support
|
|
|
|
|
Configuring the System > Content Gateway Manager
|
|
Certain options can be changed only by editing configuration variables either in the records.config file or from the command-line interface. See Command-line interface and Configuration files.
|
Click the Configure tab to display the Configure mode buttons.
All of the configuration options available in Configure mode are described in Configuration Options.
|
Click Basic to restart the proxy and manager services (you need to restart after changing certain configuration options), identify the name of the Content Gateway node, set alarm email, and enable or disable features (such as FTP processing, proxy user authentication, WCCP, cluster options, and so on).
|
|
|
Click Subscription to view your subscription key. See the Web Security Manager Help system for information on subscription keys and scanning options. If Content Gateway is integrated with only Data Security Suite, enter your Data Security subscription key in the entry field.
|
|
|
Click UI Setup to identify and change the port on which browsers connect to Content Gateway Manager, enable SSL connections to Content Gateway Manager, specify how often Content Gateway Manager refreshes the statistics on the Monitor tab, and configure access control lists, administrator accounts, and user accounts to secure Content Gateway Manager access.
|
|
|
Click Snapshots to take and restore configuration snapshots.
|
|
|
Click Logs to display, delete, or copy a selected log file to the local filesystem.
|
|
|
Click HTTP to configure HTTP caching and tune HTTP timeouts.
|
|
|
Click HTTP Responses to specify which HTTP responses are sent to clients when the proxy detects an HTTP problem with a client transaction (such as unavailable origin servers, authentication requirements, and protocol errors).
|
|
|
Click HTTP Scheduled Update to configure the proxy to load specific objects into the cache at scheduled times.
|
|
|
Click FTP to configure FTP options and tune FTP timeouts.
|
The FTP options affect requests that originate from FTP clients only. You can configure options that affect FTP requests originating from HTTP clients in the HTTP group. The FTP button appears only if you have enabled FTP processing in the Features table on Configure > My Proxy > Basic > General.
|
|
Click HTTPS to specify port information for inbound and outbound HTTPS traffic.
|
|
|
Click Hierarchies to configure HTTP parent caching.
|
|
|
Click Mapping and Redirection to set URL remapping rules and FTP remapping rules.
|
|
|
Click Browser Auto-Config to identify the port used to download browser auto-configuration files, and to set PAC and WPAD options.
|
|
|
Click Connection Control to specify which clients are allowed to access the proxy.
|
|
|
Click FIPS Security to enabled FIP 140-2-level security on HTTPS connections.
|
|
|
Click Access Control to set filtering rules and proxy authentication options (Integrated Windows Authentication, Multiple Realm Authentication, Legacy NTLM, LDAP, RADIUS).
|
|
|
Click Data Security to register with the Data Security Management Server and enable the local Data Security policy engine.
|
|
|
Click SOCKS to configure Content Gateway to use a SOCKS firewall. The SOCKS button appears only if you have enabled SOCKS in the Features table on Configure > My Proxy > Basic > General.
|
|
When Content Gateway is installed as software on a separate server, an integrated SOCKS server is not provided. To use SOCKS there must be a separate SOCKS server.
|
|
|
Click Cache to enable or disable cache pinning, configure the RAM cache size, specify the maximum size of objects allowed in the cache, and partition your cache according to protocol and origin servers.
|
|
|
Click Logging to enable or disable event logging and set logging configuration options.
|
|
|
Click Connection Management to specify:
|
|
|
Click ARM to set redirection rules that specify how incoming packets are readdressed in transparent mode. You can also set dynamic and static bypass rules.
|
|
|
Click WCCP to set WCCP configuration settings. The WCCP button appears only if WCCP is enabled in the Features table under the Configure > My Proxy > Basic > General tab.
|
|
|
Click DNS Proxy to specify the DNS proxy port. The DNS Proxy button appears only if you have enabled the DNS Proxy option in the Features table under the Configure > My Proxy > Basic > General tab.
|
|
|
Click DNS Resolver to enable or disable local domain expansion, tune host database timeouts, and configure Split DNS options.
|
|
|
Click Virtual IP to enable or disable virtual IP failover and specify the virtual IP addresses managed by the Content Gateway node. The Virtual IP button appears only if you have enabled Virtual IP in the Features table on Configure > My Proxy > Basic > General.
|
|
|
Click Certificates to view the certificate authority tree. Click any entry to view the details of that certificate.
|
|
|
Click Decryption/Encryption to configure how SSL Manager handles inbound and outbound traffic. Inbound traffic travels from the browser to SSL Manager, where the content is decrypted and inspected. Outbound traffic travels from SSL Manager to the destination Web server. SSL Manager checks the revocation status of the site certificate before forwarding re-encrypted data to the site.
|
|
|
Click Validation to configure certificate validation, specify what to do in the case that a certificate is invalid, set up verification bypass, and configure the handling of certificate revocation lists.
|
|
|
Click Incidents to view a report of occurrences in which clients received an access denial message, and to identify URLs that you want to allow, blacklist, or tunnel.
|
|
|
Click Client Certificates to configure how SSL Manager handles client certificate requests.
|
|
|
Click Logging to select the SSL logging level, logging detail, log file names, and log file handling.
|
|
|
Click Customization to customize the certificate validation failure message.
|
|
|
Click Internal Root CA to import, create, or backup the internal Root Certificate Authority.
|
Quick Links
Service Requests
How are we doing?
Provide us feedback on your experience with the Service Request portal.
provide feedback >|
|
|
|
|
|
Configuring the System > Content Gateway Manager
|
