Sun Java logo     Previous      Main      Next     

Sun logo
Sun Java System Web Proxy Server User Interface 

The Routing Tab


The Routing tab contains the following pages:


The Enable/Disable Proxying Page

The Enable/Disable Proxying page can be used to turn proxying on or off for resources. Resources can be individual URLs, groups of URLs with something in common, or an entire protocol. You can control whether proxying is on for the entire server, for various resources, or for resources as specified in a template file. This means you can deny access to one or more URLs by turning off proxying for that resource. This can be a global way to deny or allow all access to a resource.

The following elements are displayed:

Select. Click this button after selecting a resource from the drop-down list.

Regular Expression. Specify a regular expression. For more information, see "Understanding Regular Expressions" in the Proxy Server Administration Guide.

Enabling Proxying. You can select one of the following options for enabling proxy for the resource you specified:

OK. Saves your entries.

Reset. Erases your changes and resets the elements in the page to the values that they contained before your changes.


The Set Routing Preferences Page

The Set Routing Preferences page is used to configure your Proxy Server to route certain resources using the derived default configuration or direct connections, or through proxy arrays, ICP neighborhood, another proxy server, or a SOCKS server.

The following elements are displayed:

Select. Click this button after selecting a resource from the drop-down list.

Regular Expression. Specify a regular expression. For more information, see "Understanding Regular Expressions" in the Proxy Server Administration Guide.

Routing Through Another Proxy. Select the type of routing you would like for the resource you are configuring from the following:

For information on routing through a SOCKS server, see “Routing Through a SOCKS Server” in the Proxy Server Administration Guide.

OK. Saves your entries.

Reset. Erases your changes and resets the elements in the page to the values that they contained before your changes.


The Forward Client Credentials Page

The Forward Client Credentials page is used to configure the proxy to send client credentials to the remote server.

The following elements are displayed:

Select. Click this button after selecting a resource from the drop-down list.

Regular Expression. Specify a regular expression. For more information, see "Understanding Regular Expressions" in the Proxy Server Administration Guide.

Client IP Addressing Forwarding. The Proxy Server does not send the client’s IP address to remote servers when making requests for documents. Instead, the proxy acts as the client and sends its IP address to the remote server. However, there are times when you might want to pass on the client’s IP address:

Select one of the options to configure the proxy to send client IP addresses:

Client Proxy Authentication Forwarding. Select one of the options to configure the proxy to send the client’s authentication details:

Client Cipher Forwarding. Select one of the options to configure the proxy to send the name of the client’s SSL/TLS cipher suite to remote servers:

Client Keysize Forwarding. Select one of the options to configure the proxy to send the size of the client’s SSL/TLS key to remote servers:

Client Secret Keysize Forwarding. Select one of the options to configure the proxy to send the size of the client’s SSL/TLS secret key to remote servers:

Client SSL Session ID Forwarding. Select one of the options to configure the proxy to send the client’s SSL/TLS session ID to remote servers:

Client Issuer DN Forwarding. Select one of the options to configure the proxy to send the distinguished name of the issuer of the client’s SSL/TLS certificate to remote servers:

Client User DN Forwarding. Select one of the options to configure the proxy to send the distinguished name of the subject of the client’s SSL/TLS certificate to remote servers:

Client SSL/TLS Certificate Forwarding. Select one of the options to configure the proxy to send the client’s SSL/TLS certificate to remote servers:

Client Cache Information Forwarding. Select one of the options to configure the proxy to send information about local cache hits to remote servers:

Set Basic Authentication Credentials. Select one of the options to configure the proxy to send a HTTP request:

OK. Saves your entries.

Reset. Erases your changes and resets the elements in the page to the values that they contained before your changes.


The Check Java IP Address Page

The Check Java IP Address page is used to enable Java IP address checking support for the Proxy Server.

To maintain your network’s security, your client may have a feature that restricts access to only certain IP addresses. The Proxy Server provides support for Java IP Address Checking that enables your clients to query the Proxy Server for the IP address used to retrieve a resource. When this feature is enabled, a client can request the Proxy Server to send the IP address of the origin server, and the Proxy Server will attach the IP address in a header. Once the client knows the IP address of the origin server, it can explicitly specify that the same IP address be used for future connections.

The following elements are displayed:

Select. Click this button after selecting a resource from the drop-down list.

Regular Expression. Specify a regular expression. For more information, see "Understanding Regular Expressions" in the Proxy Server Administration Guide.

Java IP Address Check. Select the radio button to enable, disable, or use the default configuration for Java IP address checking.


Note

The default option uses a derived default configuration from a more general template (that is, one with a shorter, matching regular expression) to determine whether Java IP address checking should be enabled or disabled.


OK. Saves your entries.

Reset. Erases your changes and resets the elements in the page to the values that they contained before your changes.


The Create/Edit Autoconfiguration File Page

The Create/Edit Autoconfiguration File page is used to create an autoconfiguration file. The page lists any autoconfiguration files you have on your proxy’s machine. You can click the autoconfiguration file to edit it.

The following elements are displayed:

URI (from client). Type an optional URI (the path portion of a URL) that clients will use when getting the autoconfiguration file from the proxy. For example, type / to let clients access the file as the proxy’s main document (similar to an index.html file for a web server). Clients would then use only the domain name when accessing the proxy for the autoconfiguration file. You can use multiple URIs and create separate autoconfiguration files for each URI.

PAC File. Type a name for the autoconfiguration file using the .pac extension. If you have one file, you might call it simply proxy.pac. All autoconfiguration files are ASCII text files with a single JavaScriptTM function. For more information on the syntax of the files, see "Creating the Autoconfiguration Files Manually" in the Proxy Server Administration Guide.

Reset. Erases your changes and resets the elements in the page to the values that they contained before your changes.

OK. Another page appears. Use this page to create an autoconfiguration file. The items on the page are followed in order by the client. These are the items on the page:

Reset. Erases your changes and resets the elements in the page to the values that they contained before your changes

OK. Creates the autoconfiguration file. The file is stored in the directory server-root/proxy-id/pac. You will get a confirmation message that the file was created correctly. Repeat the preceding steps to create as many autoconfiguration files as you need.


The Set Connectivity Mode Page

The Set Connectivity Mode page is used to set the connectivity mode of the Proxy Server. This feature makes it convenient to install the proxy on a portable machine that you can use for demonstrations.

When the proxy is disconnected from the network, documents are returned directly from the cache. The proxy cannot do up-to-date checks, so the documents are retrieved very quickly.

Also, if you are not connected to a network, connections never hang because the Proxy Server is aware that there is no network and never tries to connect to a remote server. You can use this no-network setting when the network is down but the Proxy Server machine is running.


Note

Running the proxy disconnected from the network results in accessing stale data from the cache. and also makes the proxy security features unnecessary.


The following elements are displayed:

Select. Click this button after selecting a resource from the drop-down list.

Regular Expression. Specify a regular expression. For more information, see "Understanding Regular Expressions" in the Proxy Server Administration Guide.

Connectivity Mode. There are four network connectivity modes. Select one of the options:

OK. Saves your entries.

Reset. Erases your changes and resets the elements in the page to the values that they contained before your changes.


The Set FTP Mode Page

The Set FTP Mode page is used to change the Default FTP Transfer Mode.

File Transfer Protocol (FTP) has two different ways to establish a data connection between the FTP server and the client where the proxy acts as a client. The two modes are referred to as PASV (Passive) and PORT (Active) mode FTP.

Some FTP sites run a firewall, which makes PASV mode non-functional for proxy servers. Because of this, the Proxy Server can be configured to use the PORT mode FTP. You can turn on PORT mode for the entire server, or you can turn it on only for specific FTP servers.


Note

Even when PASV mode is on, the Proxy Server will use PORT mode if the remote FTP server does not support PASV mode. If the Proxy Server is behind a firewall that makes the PORT mode FTP non-functional, you cannot enable PORT mode. If default is selected for the resource, the Proxy Server uses the mode from a more general resource. If none is specified, PASV mode will be used.


The following elements are displayed:

Select. Click this button after selecting a resource from the drop-down list. Please select an FTP resource to configure the PASV/PORT mode setting.

Regular Expression. Specify a regular expression. For more information, see "Understanding Regular Expressions" in the Proxy Server Administration Guide.

FTP Transfer Mode. There are three transfer modes:

OK. Saves your entries.

Reset. Erases your changes and resets the elements in the page to the values that they contained before your changes.


The Set SOCKS Name Server Page

The Set SOCKS Name Server page is used to specify the SOCKS name server IP address.

If your proxy is configured to make its outbound connections through a SOCKS server, you may need to explicitly specify the IP address for the name server to be used with SOCKS.

You should specify the name server IP address if you are resolving outside host names with a DNS server other than an internal DNS service that is inside the firewall.

The following elements are displayed:

SOCKS Name Server IP Address. Specify the IP address of the DNS name server.

OK. Saves your entries.

Reset. Erases your changes and resets the elements in the page to the values that they contained before your changes.


Note

The feature that allows you to specify the SOCKS name server IP address was once accessible only through the SOCKS_NS environment variable. If you set the environment variable and use the SOCKS Name Server Setting form to specify the name server IP address, the proxy will use the IP address specified on the form instead of the environment variable.



The Configure HTTP Request Load Balancing Page

The Configure HTTP Request Load Balancing page is used to distribute the load among the specified origin server.

The following elements are displayed:

Select. Click this button after selecting a resource from the drop-down list.

Regular Expression. Specify a regular expression. For more information, see "Understanding Regular Expressions" in the Proxy Server Administration Guide.

Server. Specify the URL of an origin server. If multiple server parameters are given, the Proxy Server will distribute the load among the specified origin server.

Sticky Cookie. Specify the name of the cookie that when present in a response will cause subsequent requests to stick to that origin server. The default value is JSESSIONID.

Sticky Parameter. Specify the name of a URI parameter to inspect for route information. When the URI parameter is present in a request URI and its value contains a colon, followed by a route ID, the request will “stick” to the origin server identified by that route ID. The default value is jsessionid.

Route Header. Specify the name of the HTTP request header used to communicate route IDs to origin servers. The default value is proxy-jroute.

Route Cookie. Specify the name of the cookie generated by the Proxy Server when it encounters a sticky cookie in a response.The default value is JROUTE.

Rewrite Host. Click the appropriate option to indicate whether the Host HTTP request header is rewritten to match the host specified by the server parameter.

Rewrite Location. Click the appropriate option to indicate whether Location HTTP response headers that match the server parameter should be rewritten.

Rewrite Content Location. Click the appropriate option to indicate whether Content-location HTTP response headers that match the server parameter should be rewritten.

Rewrite Header Name. Select the checkbox to indicate whether the headername HTTP response headers that match the server parameter should be rewritten, where headername is a user-defined header name.

OK. Saves your entries.

Reset. Erases your changes and resets the elements in the page to the values that they contained before your changes.



Previous      Main      Next     


  Copyright 2006 Sun Microsystems, Inc. All rights reserved.