web-proxy
Syntax
web-proxy {
explicit-proxy {
profile name {
add-forwarded-header {
add-client-ipaddr-in-forwarded-for-info;
add-forwarded-proto-info;
add-proxy-ipaddr-in-forwarded-by-info;
obfuscated-forwarded-by-info obfuscated-forwarded-by-info;
obfuscated-forwarded-for-info obfuscated-forwarded-for-info;
}
captive-portal {
profile-name profile-name;
}
listening-port listening-port;
preferred-egress-source-ip (default-egress-ip | explicit-proxy-ip);
proxy-mode (hop-by-hop | opaque);
security-metadata-streaming-policy {
policy-name policy-name;
}
session-rate-limiter session-rate-limiter;
ssl-proxy {
profile-name profile-name;
}
}
}
traceoptions {
file < filename> <files files> <match match> <size size> <(world-readable | no-world-readable)>;
flag name;
level (brief | detail | extensive | verbose);
no-remote-trace;
}
transparent-proxy {
profile name {
drop-on-dns-error;
dynamic-web-application;
dynamic-web-application-group;
proxy-address name {
ip ip;
port port;
}
}
}
}Hierarchy Level
[edit services]
Description
CAUTION:
Enabling tracing can adversely impact scale and performance and may increase security risk. We strongly recommend using the trace, tracing, or traceoptions commands only under the guidance of a JTAC support engineer. After collecting the debug information, immediately disable tracing to minimize risk and restore normal system performance.
Configure Web Proxy service for the security device.
Required Privilege Level
security—To view this statement in the configuration.
security-control—To add this statement to the configuration.
Options
Statements are explained separately. See CLI Explorer.
Release Information
Statement introduced in Junos OS Release 23.4R1.