Use these commands to show, store, and restore proxy functions.
After you install the Guardium system, use the following commands to configure the proxy server that checks if the ICAP server is available. The port number for the proxy server is 3128, and th eport number for the transparent proxy is 3129. The port number for ICAP is 1344. You can upload a certificate and key that is signed by an authorized company such as VeriSign. After the certificate has been uploaded, a path to the proxy server is provided. The certification for the proxy server must be signed by an authorized company. If it is not, the certificate will be denied.
Restarts the icap process that handles HTTPS traffic. This command stops the icap process with a time stamp and displays the message - stop icap. Another time stamp appears with the message - start icap. Then, a third time stamp appears with the message - start icap completed to confirm that the icap has restarted.
Syntax
restart icap
Restarts the proxy server service. This command stops the service with a time stamp and displays the message - stop squid. Another time stamp appears with the message - start squid. Then, a third time stamp appears with the message - start squid completed to confirm that the proxy server has restarted.
Syntax
restart squid
Shows the state of the proxy server bypass, proxy, or SSL (Secure Sockets Layer). You cannot enable the proxy server bypass when it is already enabled. Also, you cannot disable the proxy server bypass when it is already disabled.
Syntax
show squid <bypass | proxy | ssl>
Shows the state of the proxy server bypass. The proxy server bypass configuration displays: Enabled when the proxy server bypass is on, and Disabled when it is off. If bypass is enabled, the application is available without masking when ICAP is down. When bypass is disabled, the application is not available without masking when ICAP is down. To change the setting, use the command store squid bypass <on | off>.
Syntax
show squid bypass
Shows the state of the proxy server. The proxy server configuration displays: proxy default when the state is set to default and proxy manual when the state is set to manual. If this setting is set to default, the default setting of the proxy is transparent proxy, and the client does not need to configure the proxy in the web browser. If the proxy is set to manual, the client must configure the proxy in the browser. Use the store squid proxy <default | manual> command to change the current state.
Syntax
show squid proxy
Shows the state of the proxy server SSL connection. The proxy server SSL configuration displays: enable when the SSL connection is on and disable when the SSL connection is off. To change the setting, use the command store squid ssl <on | off>. A certificate file must exist to enable the proxy server SSL connection.
Syntax
show squid ssl
Starts the icap process that handles Hypertext Transfer Protocol Secure (HTTPS) traffic. It is a method that secures the transfer of information across a network. A time stamp shows when the process has started with the following message: - start icap. After the process is completed, a confirmation message states: - start icap completed.
Syntax
start icap
Starts the proxy server service. A time stamp shows when the process is started with the following message: - start squid. After the process is completed, a confirmation message states: - start squid completed.
Syntax
start squid
Stops the icap process that handles Hypertext Transfer Protocol Secure (HTTPS) traffic. A time stamp indicates that the process to stop icap has started. It is followed by the message: - stop icap. The process stops and sends back a time stamp and the following message after it is completed: - stop icap completed.
Syntax
stop icap
Stops the proxy server service. A time stamp indicates that the process to stop the proxy server has started. It is followed by the message: - stop squid. The process stops and sends back a time stamp and the following message after it is completed: - stop squid completed.
Syntax
stop squid
Stores the proxy server bypass, proxy, or SSL configuration. The current state is determined by the argument <state> where on is to enable and off is to disable.
Syntax
store squid <bypass | proxy | ssl>
Usage: store squid bypass <state>
where state is on/off. 'on' is to enable and 'off' is to disable.
ok
If bypass is enabled, the application is available without
masking when ICAP is down. When bypass is disabled, the application
is not available without masking when ICAP is down. If you attempt
to disable the proxy server bypass when the setting is already off,
you will trigger the following error message: Invalid state.
You can see the current state by using the command show squid
bypass.Syntax
store squid bypass <on | off>
Stores the certificate for the squid service.
Stores the proxy configuration in the configuration file. You can set the state of the proxy server to default or manual. Use the show squid proxy to view the current status of the proxy server.
If this setting is set to default, the default setting of the proxy is transparent proxy, and the client does not need to configure the proxy in the web browser. If the proxy is set to manual, the client must configure the proxy in the browser.
Syntax
store squid proxy <default | manual>
Enables or disables a proxy server SSL connection. A certificate file must exist or you will receive the following error message: No certificate files existed. Cannot enable squid ssl connection. You cannot disable the ssl setting if it is already disabled. Use show squid ssl to see the current setting.
Syntax
store squid ssl <on | off>