Wireless Guest - Proxy Bluecoat redirection

Unanswered Question
Apr 16th, 2009

I have a Guest/DMZ WLC terminating EoIP tunnel. After the user is authenticated by Web Auth, only HTTP/HTTPS traffic is required to redirect to Bluecoat Proxy for filtering.

The Bluecoat Proxy and DMZ WLC wireless guest users are located in different DMZ subnets. How can I achieve the URL filtering for the Guest users?

The WLC management interface is in the same subnet as the Proxy server.

Wireless guest users should not use .pac file.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
securityfirst Fri, 04/17/2009 - 04:01

We had little success chaining Guest Web Auth with a proxy configuration.

Except using one trick:

Have your bluecoat proxy listening on port 80/443.

Additionaly it is possible to open DNS and WEB to a WPAD server before auth occurs (pre-auth ACL)

Hope it helps

Actions

This Discussion

 

 

Trending Topics: Other Wireless Mobility

client could not be authenticated
Network Analysis Module (NAM) Products
Cisco 6500 nam
reason 440 driver failure
Cisco password cracker
Cisco Wireless mode