beautypg.com

Setting up the client installation share, Dns wpad entry – HP ProLiant DL320 G4 Server User Manual

Page 23

background image

Managing and maintaining the firewall 23

SQL database format option is best when a SQL database exists on the internal network and you
have the expertise to manage a SQL database. The MSDE database format option is an excellent
option when do not want to use SQL or text-based logging.

5.

Select the File format option. From the Format list, select the ISA Server file format. This format
saves log file entries using the local time configured on the ProLiant DL320 Security Server to stamp
the log entries.

6.

Click Apply>OK.

7.

Click Apply at the top of the details pane to save the changes and update firewall policy.

Setting up the Client Installation Share

The Client Installation Share contains the firewall client installation files. The firewall client software can be
installed on network client systems by connecting the clients to the Client Installation Share located on the
ProLiant DL320 Security Server or another internal network computer.

In the current ProLiant DL320 Security Server release, the Client Installation Share is installed on the
server. However, network clients cannot access the installation files because the Server service is
disabled. The Server service must be manually enabled before network client computers can connect to
the share. However, enabling the Server service on the firewall is not recommended.

Another option is to use the Companion CD to install the Client Installation Share on a secure file server
on the LAN. You can install the Client Installation Share on a computer other than the ProLiant DL320
Security Server by inserting the Companion CD into the server CD-ROM drive and selecting the Install
Client Installation Share
option from the autorun menu.

Supporting web proxy and firewall client automatic

discovery

The firewall and web proxy client computers can be configured to automatically obtain configuration
information from the ProLiant DL320 Security Server. Automatic discovery enables the web proxy and
firewall client computers on the LAN to automatically discover the location of the server and obtain
configuration information. The entire process is transparent to users, and it allows mobile users to move to
and from the LAN and automatically obtain connection and configuration information required to connect
to the Internet through the ProLiant DL320 Security Server.

DNS WPAD entry

A WPAD alias entry is placed on the DNS server on your LAN. The entry maps the name WPAD to the
DNS host (A) record for the internal interface of the ProLiant DL320 Security Server. Requirements for the
DNS WPAD alias entry include:

A DNS server on the LAN

A host (A) entry for the internal interface of the ProLiant DL320 Security Server

An alias (CNAME) record for the name WPAD that maps to the host (A) record for the entry in DNS
of the ProLiant DL320 Security Server

Computers on the LAN that can correctly qualify the unqualified name WPAD (the best way to meet
this requirement is to join the LAN computers to the same domain as the WPAD entry)

To create the DNS WPAD entry if Windows

®

DNS server already exists on the LAN:

1.

On the DNS server, from the Administrative Tools menu, open the DNS console.

2.

In the left pane of the DNS management console, expand the server name, expand the Forward
Lookup Zones
node, and click the domain name.

This manual is related to the following products: