Management and Configuration Guide (Includes ACM xl) 2005-12
4-54 ProCurve Secure Access 700wl Series Management and Configuration Guide
Configuring Rights
External HTTP Proxy Server Specified in the Access Policy
Specifying an HTTP proxy server in an Access Policy allows finer grain control of which class of users
use which HTTP proxy servers. All HTTP traffic is redirected to the externally configured HTTP proxy
server associated with the Access Policy without being passed through the internal HTTP proxy server
on the Access Controller. In this mode of operation, the Access Controller does not perform HTTP traffic
inspection and filtering.
To use an external HTTP proxy server in an Access Policy, enable
Automatic HTTP Proxy, and configure
the external HTTP proxy server and the monitored ports in the applicable Access Policies. The HTTP
Proxy filters do not affect Access Policies specifying an external HTTP proxy server since all HTTP
traffic bypasses the Access Controller and is redirected to the external HTTP proxy server.
Access Policies that use this configuration will redirect the monitored HTTP traffic to the external HTTP
proxy server specified in the Access Policy.
Clients accessing the 700wl Series system with an Access Policy that specifies an External HTTP proxy
server will need to configure their browser programs with the HTTP proxy server IP address and port.
These clients will not see any of the 700wl Series system HTTP pages. Therefore, it is recommended that
unauthenticated users use the internal HTTP proxy server, while authenticated users can use the
External HTTP proxy server specified in their Access Policies.
Logging the client off the 700wl Series system when HTTP traffic is being redirected to an external
HTTP proxy server is handled implicitly by any of the following means:
• When the client session reaches the Reauthentication Timeout parameter
• When the client disassociates from the 700wl Series system
• When an Administrator forces the client log off