Swift
asked on
WPAD configuration for wireless clients only
We have published a wpad.dat script for Proxy settings on our wireless network. The script is working fine with directing traffic through our internal proxy for internet traffic and directly for intranet traffic and appears underneath.
My issues are: I need to be able to make this wpad script come into effect only for my wireless clients and NOT the wired ones.
For example, if my wireless clients get DHCP from subnets, say; 10.100.10.*, 10.100.20.* and 10.100.30.*; only they should be able to access the proxy and NOT anyone else across my 10.100.*.* network even though, wpad.dat is available to all others via the IIS 6 publishing it.
Also, I have a few exception entries in my Proxy settings which I configure regularly via 'Do Not use proxy server for addresses begining with':;
How should I configure these within my wpad scripting? The addresses are both IP and host/dns names.
Pls advise!!
My issues are: I need to be able to make this wpad script come into effect only for my wireless clients and NOT the wired ones.
For example, if my wireless clients get DHCP from subnets, say; 10.100.10.*, 10.100.20.* and 10.100.30.*; only they should be able to access the proxy and NOT anyone else across my 10.100.*.* network even though, wpad.dat is available to all others via the IIS 6 publishing it.
Also, I have a few exception entries in my Proxy settings which I configure regularly via 'Do Not use proxy server for addresses begining with':;
How should I configure these within my wpad scripting? The addresses are both IP and host/dns names.
Pls advise!!
function FindProxyForURL(url, host)
{ if (isPlainHostName(host))
return "DIRECT";
else
return "PROXY 'my proxy ip':80";
}
ASKER
Thanks for the reply Mat. You said that I can publish diffrent WPAD settings to wired and wireless networks. How do I do that? My DHCP server serving wireless is NOT a windows server and is internal to my Wireless Controller device whose APs are thin clients (Nortel implementation). So I cannot use the Option 252 entry of DHCP on my wireless clients.
Wired clients have the normal Windows DNS/DHCP though. Having given an "A" entry on my DNS for WPAD hosting machine, I have made sure that wpad hosting IIS is resolvable from both my wired and wireless clients.
Second, you stated that for my 'exception' in the proxy I use the DIRECT return. If I need to mention DNS/hostnames instead of IPs, what would be my line? Also, some of the stuff is hosted internally and the resolution of those DNS.WINS names should neither go directly or indirectly to the Internet realm. How do I define those entries?
Thanks in advance!!
Wired clients have the normal Windows DNS/DHCP though. Having given an "A" entry on my DNS for WPAD hosting machine, I have made sure that wpad hosting IIS is resolvable from both my wired and wireless clients.
Second, you stated that for my 'exception' in the proxy I use the DIRECT return. If I need to mention DNS/hostnames instead of IPs, what would be my line? Also, some of the stuff is hosted internally and the resolution of those DNS.WINS names should neither go directly or indirectly to the Internet realm. How do I define those entries?
Thanks in advance!!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
There are two ways to acheive this - Either by publishing different WPAD settings to wired and wireless clients, or as you have mentioned, configuring the condition in the wpad.dat file itself.
You can use this syntax to process conditions based on the source IPs of the clients: -
if (isInNet(host, "192.168.0.0", "255.255.255.0")) { return "DIRECT"; }
if (isInNet(host, "192.168.1.0", "255.255.255.0")) { return "PROXY MYPROXY:PORT"; }
This would obviously pass any IPs on 192.168.0.x through directly to the internet, but would redirect IPs from 192.168.1.x through to the proxy.