Manualshelf

Installation guide

ManualsBrandsRed Hat ManualsComputer equipmentDIRECTORY SERVER 2.0 - GATEWAY
12345678910
Transparent proxy deployment includes either a Web Cache Control Protocol
(WCCP)-enabled router or Layer 4 switch to redirect traffic, as described below:
Websense recommends that you audit the software/firmware revisions of your
network gear to ensure that no known issues exist specific to Web proxy integrations.
This is especially important in transparent proxy deployments, where a switch or
router is required to redirect traffic to the proxy.
Software requirements are as follows:
Websense Content Gateway version 7.5 is certified on Red Hat® Enterprise
Linux™ 5, update 3 and update 4, base or Advanced Platform (32-bit only)
Although not certified, Websense, Inc. provides “best effort” support for newer
versions of Red Hat Enterprise Linux. Under “best effort” support, Websense
Technical Support makes a best effort to troubleshoot cases in standard fashion
Disk space 2 disks:
100 GB for the operating system, Websense Content
Gateway, and temporary data.
147 GB for caching
If caching will not be used, the disk is not required.
The caching disk:
Should have a minimum size of 2 GB, maximum
147 GB for optimal performance
Must be a raw disk (not a mounted file system)
Must be dedicated
Must not be part of a software RAID
For best performance, use a 10K RPM SAS disk drive on
a hardware RAID controller that has at least 64 MB of
write-through cache.
Network interfaces 2
Router WCCP v1 routers support redirection of HTTP only. If
your deployment requires additional protocols, such as
HTTPS, your router must support WCCP v2.
A Cisco
®
router must run Cisco IOS
®
12.2 or later.
The clients, the destination Web server, and Websense
Content Gateway must reside on different subnets.
or—
Layer 4 switch You may use a Layer 4 switch rather than a router.
To support WCCP, a Cisco switch requires the EMI or IP
services image of the 12.2SE IOS release (or later).
Websense Content Gateway must be Layer 2 adjacent
to the switch.
The switch must be able to rewrite the destination
MAC address of frames traversing the switch.
The switch must be able to match traffic based on the
Layer 4 protocol port (i.e., TCP port 80).