Upload
bridget-poole
View
217
Download
0
Embed Size (px)
Citation preview
2
Introduction
Loughborough Universityhttp://www.lboro.ac.uk/computing/
Janet Web Cache Servicehttp://wwwcache.ja.net/
5
Proxy Server II
• Features
• Installation Requirements
• System Configuration
• Access Control
• Non-cacheable Content
• Troubleshooting
6
Features
• Web Proxy Server
• Winsock Proxy Server
• SOCKS Proxy Server
• Active Caching (Refreshing)
• Basic Access Control
7
Installation Requirements
• Windows NT 4.0 Server
• Windows 2000 Server (with Service Pack 1)
• Internet Information Server 4.0 or 5.0
• NTFS Partition(s)
8
System Configuration
• IIS is a pre-requisite
• Ensure latest service pack is applied
• Ensure Operating System is patched• Configuration notes available at
URL: http://wwwcache.ja.net/servers/proxy/
9
Access Control
• Restrict access using the LAT
• Permissions tab works in the same way as NTFS ACLS
10
Non-cacheable Content
• Cannot route direct to origin server
• Need to use a proxy-autoconfig script• Configuration details for creating a
proxy.pac are available on the wwwcache.ja.net websiteURL: http://wwwcache.ja.net/servers/proxy/directip.html
11
Troubleshooting
• Event Viewer
• Microsoft Tech NET
• Proxy Server FAQ• Corrupt cache disc
URL: http://support.microsoft.com/support/kb/articles/Q242/2/85.ASP
12
ISA Server
• Features
• Installation Requirements
• System Configuration
• Access Control
• Non-cacheable Content
• Troubleshooting
13
Features
• Active Caching (Refreshing)
• Scheduled Content Download (Pre-fetching)
• Reverse Caching
• Transparent Re-direction of HTTP requests
• Upstream routing rules• CARP (Cache Array Routing Protocol)
[Microsoft CARP is not the same as Squid’s]
14
Installation Requirements
• Windows 2000 Server
• or .NET Server (with Service Pack 1)
• NTFS Partitions
16
Access Control
• Schedules
• Destination Sets
• Client Address Sets
• Protocol Definitions
• Content Groups
18
Non-cacheable Content
• File-types managed through Content Groups
• Routing Rules can send traffic directly to the origin site (Not via JWCS)
• Routing Rules can route content to not be cached locally
• Routing Rules can be applied to Destination Sets.
20
Troubleshooting
• Service Pack problems• SP1(a) Released 24th January 2002• Version 3.0.1200.166.
Service Pack 1 Fixes• All hot fixes since ISA released• Improved admin tools• .NET server support• Security fixes from 3rd party auditors
21
The Future
• Proxy Server II is now legacy software
• ISA Server add-ins and service packs
• .NET Server (Is Windows now suitable?)
• Streaming Media
• Content Distribution
23
.NET Server…
Web Server
StandardServer
EnterpriseServer
DatacenterServer
RAM 2Gb 4Gb 64Gb 128Gb
CPU 2 2 8 32
Cluster N/A N/A 4 node 8 node
64-bit N/A N/A Yes Yes
Notes WWW SOHO Large Site OEM Only
24
.NET Server…
Mainly improvements in AD and Management
• Blank passwords at console only
• Improved command line tools
• Evaluating Security on build 3590
• IIS Currently secure from install
• Auditing enabled by default
• Integrated change log
• XML Output