Next Hop Proxy
You can forward web traffic to a next-hop proxy server for filtering. You can forward all web traffic to this server or only traffic that is sent to risky or unverified websites.
To forward web traffic to a next-hop proxy server, you must configure at least one server to run as a next-hop proxy. Required settings are host name or IP address and port number.
- On the user interface for Secure Web Gateway, select Policy > Web Policy > Policy.
- From the policy tree, select Common Rules > Next Hop Proxy.
- Optionally configure criteria to limit the scope of this rule set.
- Select one of the following forwarding options:
- Forward all traffic — Forward all traffic to a proxy server for filtering.
- Only forward traffic from high risk and unverified websites as determined by GTI — Forward only traffic sent to websites that are identified as risky by the reputation scores provided by the Global Threat Intelligence (GTI) service.
Changes to the policy tree, rule sets, or rules are automatically saved. You can publish them to the cloud now or keep working and publish later.
From this rule set, you can open and configure the Next Hop Proxy feature configuration.