Modifying the ICAP Redirect Profile for Security Devices
You can use the ICAP Redirect Profile section on Modify configuration page to configure the ICAP redirect profile. You can create, edit or delete an ICAP Redirect Profile. The ICAP server profile allows the ICAP server to process request messages, response messages, fallback options, and so on, for the permitted traffic.
Refer to the Junos OS documentation (available at http://www.juniper.net/documentation/en_US/release-independent/junos/information-products/pathway-pages/junos/product/) for a particular release and device. There you can find detailed information on the configuration parameters for that device.
To modify ICAP Redirect Profile:
- Select Devices > Security Devices.
The Security Devices page appears.
- Select a device to modify the configuration.
- From the More option or right-click menu, select Configuration > Modify Configuration.
The Modify Configuration page appears.
- Click the ICAP Redirect link in the left-navigation
The ICAP Redirect Profile page is displayed. The existing ICAP Redirect profiles if any, are displayed in the table.
See Table 1 for the list of actions that you can perform in this page.
- After modifying the configuration, you can cancel the changes, save the changes, preview the changes, or save the changes and deploy the configuration on the device. See Modifying the Configuration of Security Devices.
Table 1: ICAP Redirect Profile actions
Create an ICAP Redirect Profile
Click the + icon to create an ICAP Redirect Profile.
The Add ICAP Redirect Profile page appears. Complete the configuration according to the guidelines provided in Table 2 and click OK.
Modify an ICAP Redirect Profile
Select an ICAP Redirect profile from the table and click the pencil icon.
The Modify ICAP Redirect Profile page appears, which shows the same fields as create an ICAP Redirect Profile page. You can modify some of the fields on this page. See Table 2 for more details on the fields. Click OK to save the changes.
Delete an ICAP Redirect Profile
Select one or more ICAP Redirect profiles that you want to delete, and click the bin icon to delete the profiles.
The Warning page appears. Click Yes to confirm the deletion.
Show Hide Columns
Select to show or hide various parameters in the grid table.
Table 2: Create an ICAP Redirect Profile
Enter a valid ICAP service profile name.
Enter the server response timeout in milliseconds. Timeout is the interval after which the server is considered inactive if there is no response from the server.
The range is 100 through 50000.
|HTTP Redirect Option|
Select the Allow check box to enable redirect service on HTTP request.
Select the Allow check box to enable redirect service on HTTP response.
You can perform the following actions on this page:
Select a valid timeout option from the dropdown list.
Request an action to the server in an event of failure, when you do not receive response within a specified time period.
Select a connectivity action from the list when there is connection issue and request cannot be sent out.
Select a default action from the list to be taken when there are cases other than Timeout and Connectivity issue..
Table 3: Create an ICAP Redirect Server Settings
Enter an ICAP Redirect server name.
Select the type of host, name or IP address.
Enter a valid ICAP server listening port.
Enter the number of connections to create the ICAP service.
Specify the type of authentication.
Select the type of credential for the authentication.
The available options are:
Based on the Credential Type that you choose, enter the ASCII string or Base64 string.
Enter the path to the service that handles Request Modification (REQMOD) requests.
Enter the path to the service that handles Response Modification (RESPMOD) requests.
Select a virtual router that is used for launching the service.
SSL Initiation Profile
Select a SSL initiation profile.