Configuring A Caching Proxy Server - Watchguard Firebox X1000 User Manual

Chapter 9: Configuring Proxied Services
2
If you want to specify content types to allow, click the
upper Add button in the dialog box.
The Select MIME Type dialog box appears.
3
Select a MIME type. Click OK.
4
To create a new MIME type, click New Type. Enter the
MIME type and description. Click OK.
The new type appears at the bottom of the Content Types drop-
down list. Repeat this process for each content type. For a list of
MIME content types, see the Reference Guide.
5
If you want to specify unsafe path patterns to block,
enter a path pattern next to the left of the Add button.
Click Add.
Only the path and not the host name are filtered. For example,
with the Web site www.testsite.com/login/here/index.html, only
the elements /login/ and /here/ can be added to the unsafe path
patterns box, not *testsite*.
If you want to disable content type filtering, click the Set-
tings tab. Clear the checkbox marked Require Content
Type.
Zip files are denied when you deny Java or ActiveX applets,
because Zip files often contain these applets.

Configuring a caching proxy server

Because the Firebox's HTTP proxy does no content cach-
ing, the Firebox has been designed to work with caching
proxy servers. Because company employees often visit the
same Web sites, this greatly speeds operations and reduces
the load on external Internet connections. All Firebox
proxy and WebBlocker rules that are in place still have the
same effect.
The Firebox communicates with proxy servers exactly the
same way that clients normally do. Instead of a GET
request from the Firebox to the Internet looking like this:
GET / HTTP/1.1
It ends up looking like this, and the request is sent to the
configured caching proxy server instead:
154
N
OTE
WatchGuard Firebox System