Proxy question

My client machines use a default gateway to access the Web. I am in the process of moving over to using a proxy. When I am configuring DHCP can I now remove the default gateway for client machines seeing they are running through a Proxy or is the gateway still required?
LVL 6
Sid_FAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

James HodgeManaging DirectorCommented:
Hello,

Default gateway is still required. This is for IP routing which is a different concept than using a Web proxy for HTTP.

James
0
mcdaddy513Commented:
You won't need the gateway as long as you don't need your clients to be able to talk to anything outside of your subnet. If they are going through a proxy for HTTP/HTTPS traffic, then then proxy will definitely need the gateway. If you plan on having multiple subnets, or your clients will need to connect to bypass the proxy for other protocols, you will need to have a DG.
0
Sid_FAuthor Commented:
The IP routing is all on one network, the clients are not on other subnets, clients need to be able to access http and https only. I'm really tring to make sure all clients use the proxy and that they can't get a work around to bypass the proxy and go directly out the firewall. I know I can create a rule on the firewall to only allow the proxy IP but I wanted to avoid this.
0
Determine the Perfect Price for Your IT Services

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden with our free interactive tool and use it to determine the right price for your IT services. Download your free eBook now!

mcdaddy513Commented:
Assuming the clients are locked down so the user cannot change the network settings, and that the proxy is on the same network, you should not need a DG on the client machines.

If you are using Windows machines, you could use local group policy to lock down the IE settings to force a web proxy. You would have to ensure they couldn't install another browser or change registry settings, etc. This is just another option.

A third option would be WPAD.

However, you should not need a DG for the client machines which should take care of your worries.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Sid_FAuthor Commented:
If the only thing that plugs into my firewall is my proxy and if the firewall allows all outbound should my proxy handle blocking users that turn off their proxy and try access the web via the DG or should this be a job for my firewall
0
mcdaddy513Commented:
If you cannot lock down the network settings, then yes, you will need to utilize the ACLs in your firewall to block traffic except from the proxy.
0
Sid_FAuthor Commented:
Thanks
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Forefront ISA Server

From novice to tech pro — start learning today.