F-Secure Internet Gatekeeper for Linux/Administrator’s Guide
28
7.
Advanced Settings
7.1
Web Console Settings
You can use the web console to change the settings as required. The settings are described below.
For information on the web console, see “
Web Console
”, 20.
7.1.1
Proxy Settings
The name in parentheses ( ) is the item name in the settings file (conf/fsigk.ini).
Proxy settings
Proxy Settings
Specifies how the virus scanning proxy works.
Click the
Save and Restart
button to apply the settings and restart the specified services. You can
also use the
chkconfig
command to change the automatic startup settings.
7.1.1.1
HTTP Proxy
HTTP Proxy
HTTP Proxy
(http_service)
Click the
On
and
Off
buttons to start or stop the HTTP proxy service.
Proxy port
Proxy Port
(svcport)
Specifies the port number used by the proxy service.
Usually, you need to specify only the port number. To specify the port number, IP address, and
interface name all together, use the following format:
Syntax:
[A.A.A.A%EEE:PPP|A.A.A.A:PPP|%EEE:PPP|PPP]
(PPP:
Port number, A.A.A.A:
Address, EEE: Interface)
Examples:
9080, 1.2.3.4:9080, %eth0:9080, 1.2.3.4%eth0:9080
■
You can specify only one inbound port number. To listen for connections on more
than one port, use the REDIRECT setting in the iptables function of Linux.
For example, to listen for connections on both port 9080 and port 12345, set 9080
as the inbound port number. Use iptables to redirect port 12345 to port 9080. In
this case, use the following command to set up iptables:
# iptables -t nat -A PREROUTING -p tcp -dport 12345 -j REDIRECT -to-port
9080
After specifying the setting, save the iptables configuration:
# /etc/init.d/iptables save
■
See your Linux distribution documentation for information about using and saving