WEBGATE
This screen displays the current configuration information for the webgate
proxy. The administrator can modify the webgate configuration on
this screen and then save the updates to the firewall. After saving
the modifications, the administrator will have to go to the T.Rex
Start/Stop Services Menu to refresh
webgate before the modifications will take effect.
Edit Button
Edit the config file directly rather than using this configuration
screen.
Directory which webgate should run under
The directory for webgate to change to and 'chroot' to before completing
a connection so as to provide an additional level of security. Do
not specify '/' since that defeats the purpose of this parameter.
Maximum idle time in seconds before disconnect
Number of seconds to of idle time before WEBGATE closes a connection.
Number of copies of webgate to run
The number of copies of webgate to run on startup.
Minimum number of spare idle webgate processes
If the number of idle child webgate processes fall below this
number, the parent webgate process will start new child processes until
the number of idle child processes reaches this number.
Maximum number of spare idle webgate processes
If the number of child webgate processes exceeds this number,
the parent webgate process will purge child processes until the number
of idle child processes is reduced to this number.
Maximum number of webgate processes allowed
This is the maximum number of child webgate processes that
can be active concurrently. This allows a limit be set so that webgate
will not take up too much system resources by starting up too many child
processes.
Number of times to use a process before replacing it
Purge a child process after it has been used this number of
times.
Interval in seconds between checking and adjusting webgate processes
The number of seconds to wait between checking on the number
of active, idle webgate child processes and readjust the number when necessary.
HTTP log file name
HTTP log format
Specifies whether the "CLFExt" or the "WebTrendsMultiHomed"
format should be used for the HTTP log.
Turn trace on
Specifies whether trace should be turned on or not. This is for
debugging purposes only. WEBGATE should be run with trace off at
all times except when debug information is to be collected.
Permit/Deny Rules
This is the area where new permit/deny rules can be added and existing
permit/deny rules can be modified or removed. See Working
With a Rules Panel for more information.
Permit/Deny
Select 'permit' or 'deny' from this choice button.
From Address
The IP address from which a connection request is initiated. On a
permit rule, this field, together with Local
IP and Local Port are fields
that will be compared to an incoming connection request to determine if
the connection is to be permitted. On a deny rule, this field and
local
Port will be compared to an incoming connection request to determine
if the connection is to be denied. If an incoming connection request
matches all three fields (either exactly or through wildcards), this rule
will determine if the connection is to be permitted or denied and, if permitted,
where the destination server is.
Local IP
The IP address on the firewall to which a connection request is addressed.
On a permit rule, this field, together with From
Address and Local Port
are fields that will be compared to an incoming connection request to determine
if this rule applies. If an incoming connection request matches all
three fields (either exactly or through wildcards), this rule will determine
if the connection is to be permitted or denied and, if permitted, where
the destination server is. This field is not active for deny rules.
Local Port
The port number on the firewall to which a connection request is addressed.
On a permit rule, this field, together with Local
IP and From Address
are fields that will be compared to an incoming connection request to determine
if the connection is to be permitted. On a deny rule, this field
and From Address will be compared
to an incoming connection request to determine if the connection is to
be denied. If an incoming connection request matches all three fields
(either exactly or through wildcards), this rule will determine if the
connection is to be permitted or denied and, if permitted, where the destination
server is.
Dest IP
The IP address of the server to connect to when a connection request is
found to match this permit rule. This field is not active for deny
rules.
Dest Port
The port number on Dest IP to connect
to when a connection request is found to match this permit rule.
This field is not active for deny rules.
Taskbar Pulldown Menu
Task Buttons