■
ISA Server 2004 or 2006 Standard Edition in firewall and proxy mode without user
authentication.
■
Forefront TMG 2010 in firewall and proxy mode without user authentication.
HTTP (port 80) and HTTPS (port 443) traffic will be proxied through the upstream server.You
may need to configure your firewall to allow other external connections. Refer to the Setup
Guide to review specific ports that the appliance uses for external and internal connections.
2. In the Specify upstream proxy section’s Port field, type the port number by which you access
your organization’s web proxy.
3. Optionally, to forward requests for specific hostnames to a particular upstream proxy, click the
Advanced Settings button.
The Advanced Settings dialog box is displayed.
a) In the Hostname text box, enter the IP address or hostname for which you want to forward
requests.Wildcard ("*") hostnames can be used, such as *.example.com, if you want to
match an entire domain.
b) In the Upstream proxy text box, enter the hostname or IP address and the colon-separated
port number of the upstream proxy to which you want to forward requests.
Note: In Transparent or Bridged mode, if a user requests an HTTPS page from a browser
that does not support Server Name Identification (SNI), and you have specified a proxy by
hostname or domain in Advanced Settings, that alternative proxy will not be used. Rather,
the request will go through the default upstream proxy that you entered in steps 1 and 2.
To ensure that the alternative proxy is used instead, enter an IP address in the Advanced
Settings.
c) Click Add to add the new entry to the list.
d) To remove entries from the list, first select the check box next to each entry that you want
to remove, then click Delete.
4. Click Apply.
Related tasks
Explicit Deployment on page 25
4.5.2.2 Accepting ISA/TMG Server Authentication
1. Enter the IP address (or comma-separated addresses, if there is more than one) of the ISA/TMG
server(s) in the IP Addresses text box in the Accept authentication from downstream
ISA/TMG servers section.
2. Install the ISA/TMG server plug-in.
a) Click Download the Sophos ISA/TMG plug-in to download the plug-in for installation on
your ISA/TMG server.
The ISA/TMG plug-in is compatible with Microsoft ISA Server 2004 and 2006, and Microsoft
Forefront TMG 2010.
b) Install the downloaded plug-in on your ISA or TMG server.
152 | Configuration | Sophos Web Appliance
To Next Page
Loading...
Need help?
General
