Has anyone configured the SSL VPN box as a reverse proxy for Microsoft Lync. We are using it for OCS 2007 R2 using Authentication Only sign in policy and it works but Lync is working. I think I need to use the "Host-Header forwarding" option but doesn't seem to be available via Authorization only policies. I tried using a web profile to set up the access but can't get it to work.
Version 6.5R4.1 (build 15977)
Solved! Go to Solution.
I created this example on my lab box using meet.example.com.
That should be it.
Have you ever got it working? I try to configure the same ;-)
You are correct that the option for host-header forwarding is not available for the authorization only URL. Does passthrough proxy work with anonymous auth and a customer start page to the URL?
OK, got it working. It seems that the host-header forwarding is not required. At least in our environment. I just used a virtual hostname.
I tried to configure the passthrough proxy option as well - however after signing in (typing the hostname in the browser) I see a link to the lync site which i need to click. The request is not forwarded automatically - but thats what we needed.
Can you provide some details on what you configured to get it working.
I've been trying without success and we are getting to the point where we are considering installing an MS reverse proxy.
@dcvers: It looks like he used passthrough proxy rather than the authorization only URL; have you tried that as well? This option is similar except it requires login prior to passing you through to the site.
@hagbard: if you enable the custom start page option for the role, does that work for you?
hi Guys Pls if i may ask the SSL acts as a reverse proxy device right?
Not really; it acts similar to a reverse proxy in that users see/interact with the external-facing unit, but is not a true reverse proxy in that there is rewriting of the content to go through and reference the external-facing host name.
When you configure an authorization only URL, the unit functions as close to a traditional reverse proxy as possible in that users see the external site but no modification is done.
Is there a specific item you have a query about?
it seems that we do not have a working config here. I get error 404 on "authorisation only" proxy. I can not add an option to preserve host headers, as there is autopolicy on "authorisation only".
So casn someone validate that Juniper SSL works ok with Lync as a reverse proxy at least for meet.domain.com functionality?
I believe that the others on here have needed to use passthrough proxy rather than authorization only, due to being able to configure some items that may be needed, such as host-header forwarding.
What is "meet.domain.com functionality"?