The Journey of a Network Engineer

Dec 25 2011   4:42AM GMT

Moving from Explicit Proxy to Transparent Proxy – part 1

Sulaiman Syed Profile: Sulaiman Syed

Proxy can  be implemented in either a explicit or transparent mode. The deployment of proxy (network logical location) can be either in-line (bridge) or out-line. Since we are planning to more from the explicit mode to transparent mode, various changes are required to be done, on both network and security levels. Lets review how the current network setup is.

  1. The default route is pointing toward the firewall.
  2. firewall is part of Server Farm Vlan (wrong design).
  3. Proxy are configured to be inline. one leg in server farm, the other leg directly to the internet. (wrong design).
  4. All internal IPs are converted into one IP (many to one).
  5. Since it is explicit, the returning traffic will always come back to the proxy
The image below shows the setup, and how simple routing is done for it. I have changes the IP addresses for security measures.

Current Proxy Diagram

In the second part, I would go into the details of our target design, and how we would want our traffic to go.

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: