Advertisement
In both configurations, incoming requests to the SMA 6200/
7200 services—including HTTP/S traffic for the Web proxy
service—are sent over port 80 (HTTP) and port 443 (HTTPS).
Traffic from the OnDemand agent is always sent over port 443.
Because most networks are configured to enable traffic over
these ports, you should not need to reconfigure firewalls on
your network.
You should install the appliance in a location where it can
connect to resources on your network, including:
•
Application servers and file servers, including Web
servers, client/server applications, and Windows file
servers.
•
External authentication repositories (such as an LDAP,
Microsoft Active Directory, or RADIUS server).
•
One or more Domain Name System (DNS) servers.
•
Optionally, a Windows Internet Name Service (WINS)
server. This is required for browsing Windows networks
using WorkPlace.
CAUTION:
The SMA 6200/7200 appliance does not
provide full firewall capabilities and should be secured
behind a firewall. Running without a firewall makes
the appliance vulnerable to attacks that can
compromise security and degrade performance.
Although not required, enabling the appliance to communicate
with these additional resources provides greater functionality
and ease of use:
•
Network Time Protocol (NTP) server for synchronizing
the time on the appliance.
•
External server for storing syslog output.
•
Administrator's workstation for secure shell (SSH)
access.
You can configure the appliance to use a self-signed server
certificate, or, for enhanced security, you can obtain a
certificate from a commercial certificate authority (CA). For
more information, refer to the SMA Administration Guide.
Dell Secure Mobile Access 6200/7200 Getting Started Guide
17
Advertisement
