![]() Please note that this feature will not work well if the application refers to resources within the same host using absolute URLs. Finally, update the DNS records for this virtual hostname and alias (if any). If you have not disabled authentication, please create a domain for this portal from Portals > Domains page. Clicking "OK" takes you back to the Portals page and you should see the web application listed as an "Offloaded Web Application" under "Description". Check "Automatically Login", to configure Single Sign-On settings. This is useful for web sites hosted publicly. Check "Disable Authentication Controls and Access Policies", if you need no authentication or access policies enforced. The "Homepage URI" field forwards the user after login, to a specific resource on the web server. Note: - The "Application Server IP" field refers to the private IP of the backend host. Under the "App Offloading" tab, please fill in the details of the web site you would like to offload. You could avoid creating a virtual interface by importing a wildcard certificate for all virtual hosts of the SSL VPN. If you need to associate a certificate to this host, you should additionally set a virtual interface and import the relevant SSL certificate. Under the Virtual Host tab, set a host name for the application in the “Virtual Host Domain Name” field. Click on "Add Portal", set a portal name 3. Login as admin, and click on Portals on the left menu. To set up a web app for offloading, please try the following steps: 1. Extends SSL VPN security features to publicly hosted web sites as well. The functionality of the original web app is retained almost completely, while a HTTP(S) bookmark is only a best-effort solution. No URL rewriting is necessary thereby improving the throughput, tremendously. An application offloaded host or web app has the following advantages over configuring the web app as a HTTP(S) bookmark in SSL VPN: 1. In addition, Web Application Firewall (WAF) can also be activated to protect these hosts from any unexpected intrusion. Web transactions can be centrally monitored by viewing the logs. For instance, in an organization certain guest users may need two-factor or client-certificate authentication to access OWA, but should not be allowed to access OWA public folders. The admin can enforce strong authentication and access policies for specific users or groups. Unlike HTTP(S) bookmarks, the access is not limited to just remote users. \ Application Offloading Application Offloading allows an admin to provide secure access to both internally hosted and publicly hosted web applications. The SonicWALL Web Application Firewall subscription service integrates a high performance RealTime Intrusion Scanning Engine and dynamically updated signature database to deliver continuous protection against malicious web attacks. In addition, the SSL-VPN admin interface and user portals are also be protected by Web Application Firewall. It provides real-time protection against a whole suite of web attacks suchĪs Cross-site scripting, SQL Injection, OS Command Injection, etc. ![]() Web Application Firewall (WAF) protects such resources configured either as HTTP(S) bookmarks or as offloaded web applications. Web Application Firewall Most web applications, including the well-designed ones, are vulnerable to a gamut of threats. There is a new option under the General tab called "Legacy Look
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |