Proxy Server and Firewall Issues
Kenn's
19990614: Proxy Server and Firewall Issues
June/1999
Tech
Notes
Tech Note #14
Once the firewall is active, it will not be possible for web browsers to connect to the Internet without using the Division proxy server. To speed up instructor-directed web sessions, local caching is provided by Netscape Proxy Server. A two-day cache is set by default. This allows a teacher to log onto any computer in the school (except the proxy system!) the day before a class and run through the web pages they would like students to access during class. Those pages will be cached and the class will be able to run much faster than if all the websites had to be loaded from the remote location at class time.
All schools have one IP address which is mapped to schps.wsd1.org, where sch is the three letter school code. This mapping is done via DNS (which is the responsibility of Brian L in Information Systems), not on the server itself. The Netscape Proxy Server runs at this address to redirect web requests to the division proxy server and to provide local caching.
For Netscape or Internet Explorer to use the local proxy, client proxy information is set to:
http: schps.wsd1.org port 8080
ftp: schps.wsd1.org port 8080
On the administrative LAN, web clients are set to:
http: 192.168.0.1 port 8080
ftp: 192.168.0.1 port 8080
Note that this is for your information only. Web client settings are updated automatically by the McAfee Installers for Windows 3.1x and 9x and by the NT Server Prep Update Diskette.
The Netscape Proxy Server is set to listen on port 8080 and forward all requests to proxy.wsd1.org.
Wingate 1.3.17 is set as follows:
| 1090 | RealAudio Proxy (default setting) |
| 110 | POP3 Proxy (default setting) |
| 2000 | TCP Mapping Proxy (mapped to alpha.wsd1.org port 23) |
| 2001 | TCP Mapping Proxy (mapped to winpuli.city.winnipeg.mb.ca port 23) |
| 25 | TCP Mapping Proxy (mapped to mail.wsd1.org port 25) |
| Note that there is no Wingate proxy for web content, since the Netscape Proxy Server is handling that. In the rare case where Wingate runs on a server other than schps.wsd1.org, it will have one additional proxy: | |
| 8080 | TCP Mapping Proxy (mapped to schps.wsd1.org port 8080) |
What this does is automatically redirect all http packets to the local Netscape Proxy Server.
Again, this is for your information only. All the above settings are handled automatically, via the NT Server Prep Update routine, or if you install Netscape Proxy and/or Wingate 1.3.17 from the WSD#1 Backup CDs issue 16 or newer.
DISCLAIMER: This document is intended for the reference of computer support personnel within Winnipeg School Division No. 1. There is no warranty or liability if procedures recommended here have an adverse affect on any systems. Use them at your own risk. Any trademarks mentioned are the property of their owners, none of whom have certified any information provided here. Opinions expressed here are personal only and do not represent the policy of Winnipeg School Division No. 1 or any other organization anywhere.
|
Got a Tech Note to share? Submissions are most welcome! [Click here.] |
To return to the Tech Notes home page, click here. |
To download a copy of all the June/1999 Tech Notes in Rich Text Format, click here. |
| Click here to visit the Information "Super-Cul-De-Sac". |
This page was updated
2001 June 9 |
|
This page hosted by  Get your own Free Homepage Check out my neighbours here in Silicon Valley Peaks by clicking here. |