Modifying the ICAP Redirect Profile for Security Devices
You can use the ICAP Redirect Profile section on Modify configuration page to configure the ICAP redirect profile. You can create, edit or delete an ICAP Redirect Profile. The ICAP server profile allows the ICAP server to process request messages, response messages, fallback options, and so on, for the permitted traffic.
Refer to the Junos OS documentation (available at http://www.juniper.net/documentation/en_US/release-independent/junos/information-products/pathway-pages/junos/product/) for a particular release and device. There you can find detailed information on the configuration parameters for that device.
To modify ICAP Redirect Profile:
Action |
Description |
---|---|
Create an ICAP Redirect Profile |
Click the + icon to create an ICAP Redirect Profile. The Add ICAP Redirect Profile page appears. Complete the configuration according to the guidelines provided in Table 2 and click OK. |
Modify an ICAP Redirect Profile |
Select an ICAP Redirect profile from the table and click the pencil icon. The Modify ICAP Redirect Profile page appears, which shows the same fields as create an ICAP Redirect Profile page. You can modify some of the fields on this page. See Table 2 for more details on the fields. Click OK to save the changes. |
Delete an ICAP Redirect Profile |
Select one or more ICAP Redirect profiles that you want to delete, and click the bin icon to delete the profiles. The Warning page appears. Click Yes to confirm the deletion. |
Show Hide Columns |
Select to show or hide various parameters in the grid table. |
Field |
Action |
---|---|
Name |
Enter a valid ICAP service profile name. |
Timeout |
Enter the server response timeout in milliseconds. Timeout is the interval after which the server is considered inactive if there is no response from the server. The range is 100 through 50000. |
HTTP Redirect Option | |
Request |
Select the Allow check box to enable redirect service on HTTP request. |
Response |
Select the Allow check box to enable redirect service on HTTP response. |
ICAP Server | You can perform the following actions on this page:
|
Fallback Option | |
Timeout Action |
Select a valid timeout option from the dropdown list. Request an action to the server in an event of failure, when you do not receive response within a specified time period. |
Connectivity Action |
Select a connectivity action from the list when there is connection issue and request cannot be sent out. |
Default Action |
Select a default action from the list to be taken when there are cases other than Timeout and Connectivity issue.. |
Setting |
Guideline |
---|---|
Name |
Enter an ICAP Redirect server name. |
Host Type |
Select the type of host, name or IP address.
|
Port |
Enter a valid ICAP server listening port. |
Sockets |
Enter the number of connections to create the ICAP service. |
Authentication | |
Authorization Type |
Specify the type of authentication. |
Credential Type |
Select the type of credential for the authentication. The available options are:
|
Credential |
Based on the Credential Type that you choose, enter the ASCII string or Base64 string. |
URI | |
Request MOD |
Enter the path to the service that handles Request Modification (REQMOD) requests. |
Response MOD |
Enter the path to the service that handles Response Modification (RESPMOD) requests. |
Routing Instance |
Select a virtual router that is used for launching the service. |
SSL Initiation Profile |
Select a SSL initiation profile. |