About NetLet Proxy
The Netlet proxy enhances the security of Netlet traffic between the Gateway and the intranet by extending the secure tunnel from the client, through the Gateway to the Netlet proxy that resides in the intranet.If the Netlet proxy is enabled, the Netlet packets are decrypted by the Netlet proxy and then sent to the destination server. This reduces the number of ports required to be opened in the firewall.
About Rewriter Proxy
The Rewriter proxy enables secure HTTP traffic between the Gateway and intranet. If you do not specify a Rewriter proxy, the Gateway component makes a direct connection to the intranet when a user tries to access a machine on the intranet.The Rewriter proxy does not run automatically after installation. You need to enable the Rewriter proxy as described below.
Log onto the Portal Server administration console as administrator.
Select the Secure Remote Access tab and click the profile name to modify its attributes.
Ensure that the Rewriter proxy and the Gateway use the same gateway profile.
Select the Deployment tab.
Modify the following attributes:
Run portal-server-install-root/SUNWportal/bin/certadmin on the server to create a certificate for the Rewriter proxy.
You need to do this step only if you have not chosen to create a certificate while installing the Rewriter proxy.
Log in as root to the machine where the Rewriter proxy is installed and start the Rewriter proxy:
rewriter-proxy-install-root/SUNWportal/bin/rwproxyd -n gateway-profile-name start |
Log in as root to the machine where the Gateway is installed and restart the Gateway:
./psadmin start-sra-instance -u amadmin -f passwordfile -N profilename -t gateway |