Table of Contents
Advertisement
Network Resources Overview
Network Resources are the granular components of a trusted network that can be accessed
using the SRA appliance. Network Resources can be pre-defined by the administrator and
assigned to users or groups as bookmarks, or users can define and bookmark their own
Network Resources.
The following sections describe types of network resources supported by the SRA appliance:
•
•
•
•
•
•
•
•
•
•
•
HTTP (Web) and Secure HTTPS (Web)
The SRA appliance provides proxy access to an HTTP or HTTPS server on the internal
network, Internet, or any other network segment that can be reached by the appliance. The
remote user communicates with the SRA appliance using HTTPS and requests a URL. The
URL is then retrieved over HTTP by the SRA appliance. The URL is transformed as needed,
and returned encrypted to the remote user.
The SRA administrator can configure Web (HTTP) or Secure Web (HTTPS) bookmarks to allow
user access to Web-based resources and applications such as Microsoft OWA Premium,
Windows Sharepoint 2007, Novell Groupwise Web Access 7.0, or Domino Web Access 8.0.1,
8.5.1, and 8.5.2 with HTTP(S) reverse proxy support. Reverse-proxy bookmarks also support
the HTTP 1.1 protocol and connection persistence.
HTTPS bookmarks on SRA 4600/4200 appliances support keys of up to 2048 bits.
HTTP(S) caching is supported on the SRA appliance for use when it is acting as a proxy Web
server deployed between a remote user and a local Web server. The proxy is allowed to cache
HTTP(S) content on the SRA appliance which the internal Web server deems cacheable based
on the HTTP(S) protocol specifications. For subsequent requests, the cached content is
returned only after ensuring that the user is authenticated with the SRA appliance and is
cleared for access by the access policies. However, SRA optimizes traffic to the backend Web
server by using TCP connection multiplexing, where a single TCP connection is used for
multiple user sessions to the same web server. Caching is predominantly used for static Web
content like JavaScript files, style sheets, and images. The proxy can parse HTML/JavaScript/
CSS documents of indefinite length. The administrator can enable or disable caching, flush
cached content and set the maximum size for the cache.
Content received by the SRA appliance from the local Web server is compressed using gzip
before sending it over the Internet to the remote client. Compressing content sent from the
appliance saves bandwidth and results in higher throughput. Furthermore, only compressed
content is cached, saving nearly 40-50% of the required memory. Note that gzip compression
is not available on the local (clear text side) of the SRA appliance, or for HTTPS requests from
the remote client.
SRA Overview | 33
Hide quick links:
Advertisement
Chapters
Table of Contents
