Various CE507

mbaschieri — Wed, 29 Oct 2003 06:54:23 GMT

Hi,

I'm working on a project where i'm placing a couple of 507 with a leg in the inside lan and a leg in a dmz, this in order to take advantage of the presence of the pix and to perform both http proxy and reverse proxy (using a cat3550 with wccp2 in the inside and a 3725 with wccp2 in the outside), is there any problem with my design?

Also, are NTLM and LDAP auth. both trasparent (popless) to the user?

Last, in the scenario above, using NTLM or LDAP auth. can I log the users activity by name rather than ip?

Tnx,

Max.

Re: Various CE507

didyap — Mon, 03 Nov 2003 21:54:56 GMT

The design with both forward and reverse proxy is generally recommended. For clients within the domain using the Internet Explorer browser in proxy mode, NTLM authentication is "popless", the user is not prompted with a dialog box to enter a username and password. In transparent mode, authentication is transparent only if the Internet options security settings are customized and set to User Authentication > Logon > Automatic logon with current username and password.

topic Re: Various CE507 in Application Networking

Various CE507

Re: Various CE507