© 2012 Cisco and/or its affiliates. All rights reserved.
Cisco Public BRKSEC-2101
66
Authentication in Transparent Deployment
What the client thinks What is really happening
1 The client sends a request to the remote
HTTP server
The client request is rerouted to the
WSA
2 The client receives a “307” from the
remote server redirecting the client to
the WSA
The client receives a “307” from the WSA,
spoofing the remote server, redirecting
the client to the WSA
3 The client connects to the WSA The client connects to
the WSA
4 The client receive a “401” authentication
request from the WSA
The client receive a “401” authentication
request
from the WSA
5 The client authenticates with the WSA The client authenticates with the WSA
6 The client receive a 307 from WSA,
redirecting it back to the remote server
The client receive a 307 from WSA,
redirecting it back to the remote server
7 The client connects back to the remote
server
The client continues to use the WSA as
a transparent proxy
Kommentare zu diesen Handbüchern