Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1066
  • Last Modified:

firebox firewall - PC Default Gateway - External Proxy Server

I have a Watchguard Firebox x1000.  
Is the only way to set-up a PC to connect to the Internet via the Firebox, to set the Default Gateway on the PC to the IP address of the Trusted Port on the Firebox ??
Is it not possible to just set the Proxy Server in Internet Explorer to the IP address of the Firebox ?
If not, is it possible to use an External Proxy Server which then connect via the Firebox ?
If this is not possible with the Firebox, are there any other "Hardware" Firewalls (e.g Cisco, Sonic, etc) that can act as a Proxy Server (As required in IE) ?
0
hqpsystems
Asked:
hqpsystems
  • 2
  • 2
1 Solution
 
Istvan KalmarSenior Network EngineerCommented:
Hi,

You able to use the cisco ASA or Router as a proxy server, it is easy to manage!

http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_configuration_example09186a00800942fd.shtml
0
 
dpk_walCommented:
Firebox would not act as HTTP proxy as needed by you; also you cannot put the IP in IE.

You can use any third party proxy software (like squid) or hardware solution as the case be.

WG HTTP proxy means that WG does HTTP application layer inspection.

Thank you.
0
 
Istvan KalmarSenior Network EngineerCommented:
Hi,
Any another question?:)
0
 
hqpsystemsAuthor Commented:
Would the Proxy  e.g Squid or MS ISA, have to be set-up as a transparent proxy ?

On the Firebox will authetication and Webblocker work OK.


0
 
dpk_walCommented:
You can setup the proxy in any way you wish; as the proxy would be applied between the internal network and firebox.
The setup would be:
Internal network<--->Proxy<---->Trust[Firebox]External<--->Internet

Here if you configure proxy as transparent, the client are the ones who would have any effect.

In FB you would configure the HTTP proxy service as:
Enabled and allowed; from internal-IP-of-proxy; to ANY

All the proxy actions would be available for traffic inspection; including webblocker, AV and/or IPS.

Thank you.
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now