Configure the proxy server list

To redirect web traffic to a proxy server, configure the proxy server list and rules.

When configuring the proxy server list, consider whether Client Proxy is deployed with McAfee ePO or McAfee ePO Cloud.

  • On premise — Configure at least one of the Web Gateway appliances installed on your network as the proxy server.
  • In the cloud — Configure McAfee WGCS as the proxy server, using this format for the host name: c<customer_id>.saasprotection.com.

    Example: c12345678.saasprotection.com

Note: Before you can save the policy, you must provide the IP address or host name of at least one proxy server and a port number.

Task

  1. From the McAfee ePO or McAfee ePO Cloud menu, select PolicyPolicy Catalog.
  2. From the Product drop-down list, select the current version of Client Proxy.
  3. Verify that MCP Policy is selected from the Category drop-down list.
  4. To configure a policy, click its name.
  5. From the Client Proxy Settings menu, select Proxy Servers.
  6. To specify how the software selects a proxy server from the list, select an option:
    • connect to the first accessible Proxy Server based on their order in the list below — The software selects the next proxy server from the list that you configure.

    • connect to the Proxy Server that has the fastest response time — The software selects the next proxy server from the list that it maintains, which is based on response time.

  7. To add proxy servers to the Proxy Server List, configure these settings, then click Add.
    • Proxy Server Address — Specifies the IP address or host name of the proxy server.
    • Proxy Port — Specifies the port number of the proxy server.
    • HTTP/HTTPS — Select this checkbox to redirect traffic sent to ports 80 and 443 to a proxy server.
    • Non-HTTP/HTTPS Redirected Ports — Specifies the port numbers of protocols other than HTTP/HTTPS whose traffic you want redirected. Verify that the proxy server supports these protocols. You can enter up to 1024 characters in this field.
  8. Select Enable Auto proxy switch over to enable this option, then specify a value for the Polling interval in this range: 10–3600 seconds. The recommended value is 60 seconds.

    The auto-proxy switchover option is only available when connect to the first accessible Proxy Server based on their order in the list below is selected.

  9. In the Specify additional ports that you would like to redirect as HTTP/HTTPS traffic field, specify the numbers of other ports whose traffic you want redirected like HTTP/HTTPS traffic. For example, you can redirect traffic sent to an application. You can enter up to 1024 characters in this field.
  10. Optionally, select Block Traffic on above configured Ports if none of the Proxy servers is reachable.
    When none of the configured proxy servers can be reached, all traffic to the configured ports and default ports 80 and 443 is blocked.
  11. Deselect Bypass proxy server for local addresses to redirect all traffic, including traffic sent to local addresses inside your organization's network, to a proxy server.
  12. Click Save.

Results

The proxy servers list is saved with the policy.