Dell SonicWall SRA 4200 Administrator's Manual
Download Administrator's manual of Dell 4200 Desktop, Gateway for Free or View it Online on All-Guides.com. This version of Dell 4200 Manual compatible with such list of devices, as: 4200, SonicWall SRA 4200, SonicWall SRA 1200, SonicWall SRA 1600, SonicWall SRA 4600
Brand: Dell
Category: Desktop , Gateway , Network Hardware , Server
Type: Administrator's manual
Model: Dell 4200 , Dell SonicWall SRA 4200 , Dell SonicWall SRA 1200 , Dell SonicWall SRA 1600 , Dell SonicWall SRA 4600
Pages: 440
24 | SRA 6.0 Administrator’s Guide
Both application offloading and HTTP(S) bookmarks use an HTTP(S) reverse proxy. A reverse
proxy is a proxy server that is deployed between a remote user outside an intranet and a target
Web server within the intranet. The reverse proxy intercepts and forwards packets that originate
from outside the intranet. An HTTP(S) reverse proxy specifically intercepts HTTP(S) requests
and responses.
Application Offloading provides secure access to both internal and publicly hosted Web
applications. An application offloading host is created as a special-purpose portal with an
associated virtual host acting as a proxy for the backend Web application.
Unlike HTTP(S) bookmarks, access to offloaded applications is not limited to remote users. The
administrator can enforce strong authentication and access policies for specific users or
groups. For instance, in an organization certain guest users may need Two-factor or Client
Certificate authentication to access Outlook Web Access (OWA), but are not allowed to access
OWA public folders. If authentication is enabled, multiple layers of advanced authentication
features such as One Time Password, Two-factor Authentication, Client Certificate
Authentication and Single Sign-On can be applied on top of each other for the offloaded host.
The offloaded application portal must be configured as a virtual host with a suitable SRA
domain. It is possible to disable authentication and access policy enforcement for such an
offloaded host.
Web transactions can be centrally monitored by viewing the logs. In addition, Web Application
Firewall can protect offloaded application hosts from any unexpected intrusion, such as Cross-
site scripting or SQL Injection.
Access to offloaded Web applications happens seamlessly as URLs in the proxied page are not
rewritten in the manner used by HTTP or HTTPS bookmarks.
For configuration information, see the “Portals > Application Offloading” section on page 142
and the “Adding or Editing User Bookmarks” section on page 302.
Benefits of HTTP(S) Bookmarks
By using HTTP(S) bookmarks, users can access the full-featured versions of Sharepoint 2007,
Microsoft OWA Premium, and Domino Web Access 8.0.1, 8.5.1, and 8.5.2 Web mail interfaces.
These interfaces are easier to use and provide more enhanced features than their basic
counterparts.
Benefits of Application Offloading
An offloaded Web application has the following advantages over configuring the Web
application as an HTTP(S) bookmark in SRA:
• No URL rewriting is necessary, thereby improving throughput significantly.
• The functionality of the original Web application is retained almost completely, while an
HTTP(S) bookmark is a best-effort solution.
• Application offloading extends SRA security features to publicly hosted Web sites.
Application offloading can be used in any of the following scenarios:
• To function as an SSL offloader and add HTTPS support to the offloaded Web application,
using the integrated SSL accelerator hardware of the SRA appliance.
• In conjunction with the Web Application Firewall subscription service to provide the
offloaded Web application continuous protection from malicious Web attacks.
• To add strong or stacked authentication to the offloaded Web application, including Two-
factor authentication, One Time Passwords and Client Certificate authentication.
• To control granular access to the offloaded Web application using global, group or user
based access policies.