- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
10-29-2020 10:22 AM
Hello,
Checking with the community if anyone has either tried this or is doing this.
Scenario: Exchange on prem, external users using Outlook
Have the PAN reverse proxy the connection from the Outlook client, external to internal traffic, to the Exchange on prem environment. So have the PAN SSL decrypt the Outlook traffic, inspect it, reencrypt it, send to exchange.
Just checking before testing it.
Cheers!
10-30-2020 09:34 AM
I have it set up on a couple systems, pretty easy to set up
import cert with key, create inbound decryption rule with cert, add cert profile for good measure, presto!
10-29-2020 04:08 PM
hi @OtakarKlier
Is there a reason you want to 'proxy' (ssl forward proxy) this connection as opposed to 'inline' (ssl inbound inspection) scan it?
Since you (should) have the server certificate, you can do inline scanning, which works very well and is actually faster/consumes less resources than proxy
inbound forward proxy should also work although i've never set it up that way 🙂
10-30-2020 07:26 AM
Hello,
Yeah I goofed and should have stated inbound SSL inspection. That is the way we would like to do it. I'll start reading up on it and see if there are any specific articles. Just wanted to see if there were those already doing this.
Thanks @reaper !
Cheers!
10-30-2020 09:34 AM
I have it set up on a couple systems, pretty easy to set up
import cert with key, create inbound decryption rule with cert, add cert profile for good measure, presto!
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!