Access official resources from Carbon Black experts
Version
7.X
Q/A
Question 1
How do I setup Bit9 with a reverse proxy?
Answer
This solution should be considered best effort.
Support does not get involved in setting up a reverse proxy for customers as it's not a supported configuration and we do not test/QA in house with a reverse proxy. If you need assistance with a reverse proxy setup, configuration or troubleshooting, Support would refer you to Professional Services or here on User eXchange.
Given that, here is information that has been shared with customers previously that might assist you in configuring or troubleshooting your reverse proxy.
To summarize, it's HTTP over SSL over TCP, on ports 443 and 41002.
We do not officially support SSL termination. (But, there are no client certificate authorizations, and no need to pass in the client's SSL session ID. There is no SOAP or XML in there anyway, no WSDL's to share, it is very bare even at the HTTP layer, mostly just encrypted transfers.)
All clients use a single DNS name to address the server, so a name that can resolve both internally and externally to the right VIP is required.
We cannot provide vendor-specific guidance or instructions for other folks' products.
Copyright © 2005-2023 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.