Deploy SafeSquid Behind Corporate Proxy
Overview
Use SafeSquid in front of the corporate proxy. A simple configuration in SafeSquid server, will forward all client requests to the forward proxy i.e. Parent Proxy.
Example scenarios:
Here am using two proxy servers as SafeSquid only
My client (Browser)'s network IP - 192.168.0.27
My Child Proxy's network IP - 192.168.27.50 (with no direct internet Access)
My Parent Proxy's network IP - 192.168.27.100
Configuration on child proxy:
1.Deploy SafeSquid proxy
2.Enabling SSL inspection in SafeSquid
3.Downloading ROOT CA certificate from SafeSquid
4.Deploy certificate in client browsers.
5.Enable forwarding to parent proxy using forwarding section
Configuration on Parent proxy:
Deploy SafeSquid, it is up and running, no extra configuration required in parent proxy
Prerequisites
Enable HTTPS inspection on child proxy (if you want,on Parent proxy also). Check our document to configure HTTPS inspection on SafeSquid - How to configure HTTPS inspection
Import SafeSquid child proxy ROOT CA in client browser
Note: No configuration required on Parent Proxy server. Just deploy the parent proxy and make sure that it is up and running.
Access The SafeSquid User Interface
Go to Configure
Go to Application Setup
Go to Proxy chain
Enable Global section
Go to Forwarding proxies
Add an entry
In the example: my upstream proxy ip: 192.168.27.100
In example: my upstream proxy listening on port 8080
Testing
Save configuration
When you click on Save config, it will give a prompt for asking the confirmation to store your configuration into the cloud.
Select Yes only in below cases:
if you want to use this same configuration in other SafeSquid instances.
if your total configuration in all sections is completed and validated.
Otherwise select No and click on submit.
Related Articles
Setup transparent proxy on SafeSquid
Overview Internet is an essential part of most company’s business infrastructure. However, it can be a risky place, but there are ways to minimize risks so your business can thrive. Analysts encourage organizations to deploy a secure web gateway ...Block Personal Gmail, Allow Google Corporate Accounts
Overview Nowadays emails are used very frequently to exchange information between people using electronic devices. In some organization personal emails in the office network are not allowed. Personal emails are blocked to avoid spending of productive ...How to configure reverse proxy
Overview A proxy server is an intermediary server that forwards requests for content from multiple clients to different servers across the Internet. A reverse proxy server is a type of proxy server that typically sits behind the firewall in a private ...How to Setup Configuration Sync in a SafeSquid Proxy Cluster
Overview The lack of configuration synchronization in proxy clusters presents notable challenges. Inconsistencies across proxy servers without automated sync can lead to errors, system vulnerabilities, and inefficient performance. Each server ...How To configure Proxy In a Browser
Overview SafeSquid Proxy Service has a browser based intrinsic WebGUI, that allows users to configure, and manage its various features. To access the Interface, you must configure your web-browser to use the SafeSquid® proxy server. You should be ...