Configuring a Proxy Service

A reverse proxy can have multiple proxy services, and each proxy service can protect multiple resources. You can modify the following features of the proxy service:

  • Web servers

  • HTML rewriting

  • Logging

  • Protected resources

  • Caching

  1. To configure a proxy service, click Access Gateways > Edit > [Name of Reverse Proxy] > [Name of Proxy Service].

  2. Specify the following details:

    Published DNS Name: Displays the value that users are currently using to access this proxy service. This DNS name must resolve to the IP address you set up as a listening address on Access Gateway. You must modify this field only if you have modified the DNS name you want users to use to access this resource.

    This name determines the possible values of the Cookie Domain.

    Description: (Optional). Provides a field where you can describe the purpose of this proxy service or specify any other pertinent information.

    Cookie Domain: Specifies the domain for which the cookie is valid.

    If one proxy service has a DNS name of www.support.novell.com and the second proxy service has a DNS name of www.developernet.novell.com, the cookie domains are support.novell.com for the first proxy service and developernet.novell.com for the second proxy service. You can configure them to share the same cookie domain by selecting novell.com for each proxy service. Single sign-on between the proxy services is simplified when the proxy services share the same cookie domain.

    Enable Advanced Session Assurance: Select this option to enable Advanced Session Assurance at the proxy service level. This configuration works only when the cluster-level Session Assurance is enabled. For more information, see Enabling Advanced Session Assurance at the Proxy Service Resource Level.

    HTTP Options: Allows you to set up custom caching options for this proxy service. See Section 3.5.2, Controlling Browser Caching.

    Advanced Options: Specifies how the proxy service handles specific conditions, such as web server error pages. If similar options are configured globally, the proxy service configuration overwrites the global setting. For information about the proxy service options, see Configuring Advanced Options for a Domain-Based and Path-Based Multi-Homing Proxy Service.

  3. Click OK to save your changes to browser cache.

  4. Click Devices > Access Gateways.

  5. To apply your changes, click Update > OK.

    Until this step, nothing has been permanently saved or applied. The Update status pushes the configuration to the server and writes the configuration to the configuration data store. When the update has completed successfully, the server returns the status of Current.

    To save the changes to the configuration store without applying them, do not click Update. Instead, click Edit. On the Configuration page, click OK. The OK button on this pages saves the cached changes to the configuration store. The changes are not applied until you click Update on Access Gateways page.

  6. Update Identity Server to accept the new trusted relationship. Click Identity Servers > Update.

  7. Continue with one of the following.