I tried to enable ENS and set Trasparent redirection in the session properties tab of the WWW Proxy server, but in this way clients can take access to the Internet without pass trough the WWW Proxy server and consequently without my Polices settings.
The WWW Proxy server runs on port 85 (I have Apache on the WG machine).
In the Port Security tab of the ENS properties I see the Redirect Action on port 85.
Where I'm wrong ?
Marzio
Trasparent redirection with ENS doesn't work
Moderator: Qbik Staff
3 posts
• Page 1 of 1
Trasparent redirection with ENS doesn't work
by Marzio Muscionico » Jan 23 04 4:22 am
- Marzio Muscionico
- Posts: 3
- Joined: Jan 09 04 4:42 am
by erwin » Jan 23 04 8:30 am
Hi Marzio
How do you have policies setup are they configured on the WWW proxy or through system policy?
How are your clients authenticating, or are they assumed? In other words how can WinGate tell who is connecting and so implement the policy?
One of main purposes for transparent redirects is to push all client requests through the approriate Proxy service, regardless of how the clients are connecting (i.e NAT, WGIC, or proxies) for More info you can read about in our white paper section on the WinGate website
http://www.wingate.com/resources.php
If policies are setup in the right way, then it should not influence them being implemented correctly.
Regards
Erwin
How do you have policies setup are they configured on the WWW proxy or through system policy?
How are your clients authenticating, or are they assumed? In other words how can WinGate tell who is connecting and so implement the policy?
One of main purposes for transparent redirects is to push all client requests through the approriate Proxy service, regardless of how the clients are connecting (i.e NAT, WGIC, or proxies) for More info you can read about in our white paper section on the WinGate website
http://www.wingate.com/resources.php
If policies are setup in the right way, then it should not influence them being implemented correctly.
Regards
Erwin
- erwin
- Qbik Staff
- Posts: 408
- Joined: Sep 03 03 2:54 pm
by Marzio Muscionico » Jan 23 04 10:17 am
Hi Erwin,
>How do you have policies setup are they configured on the WWW proxy >or through system policy?
Trough the WWW proxy.
>How are your clients authenticating, or are they assumed? In other >words how can WinGate tell who is connecting and so implement the >policy?
The clients are assumed by IP address.
The problem is not only in policies, it's seems that the WWW proxy doesn't work at all if ENS is enabled.
WC server:
ENS enabled
WWW Proxy server running on port 85
No other service or server enabled.
PC Client:
Gateway & DNS point to WC server IP
IE browser connection options:
no proxy
In this situation when the client call a www page nothing appear in the Activity pane of GateKeeper (only the DNS request from the client), and the page is displayed on the Client browser.
So, it seems that the Client can gain access to the Internet without the control of the WC Server (and sure, no policies applied).
If I disable ENS on the Server and set the Client IE connection options to use the proxy, everything it's ok, I see the WWW proxy activity and the policies are applied.
WC Server:
Windows 2000 Professional last SP.
Wingate v.5.2.2
Regards
Marzio
>How do you have policies setup are they configured on the WWW proxy >or through system policy?
Trough the WWW proxy.
>How are your clients authenticating, or are they assumed? In other >words how can WinGate tell who is connecting and so implement the >policy?
The clients are assumed by IP address.
The problem is not only in policies, it's seems that the WWW proxy doesn't work at all if ENS is enabled.
WC server:
ENS enabled
WWW Proxy server running on port 85
No other service or server enabled.
PC Client:
Gateway & DNS point to WC server IP
IE browser connection options:
no proxy
In this situation when the client call a www page nothing appear in the Activity pane of GateKeeper (only the DNS request from the client), and the page is displayed on the Client browser.
So, it seems that the Client can gain access to the Internet without the control of the WC Server (and sure, no policies applied).
If I disable ENS on the Server and set the Client IE connection options to use the proxy, everything it's ok, I see the WWW proxy activity and the policies are applied.
WC Server:
Windows 2000 Professional last SP.
Wingate v.5.2.2
Regards
Marzio
- Marzio Muscionico
- Posts: 3
- Joined: Jan 09 04 4:42 am
3 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 6 guests