Caching Proxy Administration Guide

WebSphere(R) Application Server
Caching Proxy Administration Guide

Version 5.0

Document Number GC09-4601-00

First edition (November 2002)

This edition applies to:

WebSphere Application Server, Version 5.0

and to all subsequent releases and modifications until otherwise indicated in new editions.

Order publications through your IBM representative or through the IBM branch office serving your locality.

(C) Copyright International Business Machines Corporation 2002. All rights reserved.
U.S. Government Users Restricted Rights -- Use, duplication or disclosure restricted by GSA ADP Schedule Contract with IBM Corp.

Contents

  • Contents

  • Figures

  • About this book
  • Who should read this book
  • Conventions and terminology used in this book
  • Accessibility
  • How to send your comments
  • Related information

    • Getting started with the Caching Proxy

  • Overview

  • Using the Configuration and Administration forms
  • Browser requirements
  • Accessing the Configuration and Administration forms
  • Setting the administrator password

  • Using the Configuration Wizard

  • Manually editing the ibmproxy.conf file

  • Starting and stopping the Caching Proxy
  • Automatic startup and shutdown on UNIX systems
  • Manual startup on UNIX systems
  • On AIX:
  • On Linux:
  • On Solaris:
  • Startup as a Windows service
  • Startup as a Windows application
  • Using the Start menu
  • Using the command prompt
  • Starting multiple proxy servers
  • Manual shutdown on UNIX systems
  • Limitations of the shutdown commands
  • Manual shutdown on a Windows system
  • Restarting after configuration changes

    • Configuring and tuning the Caching Proxy process

  • Define the server
  • Associated directives
  • Configuration and Administration forms

  • Establish process ownership
  • Associated directives
  • Configuration and Administration forms

  • Manage connections
  • Associated directives
  • Configuration and Administration forms

  • Tune the proxy server process
  • Set performance-related directives
  • Examine other applications
  • Verify paging space
  • Tune the file system
  • Tune TCP/IP configuration
  • Tune TCP time wait interval for high-load environments (Linux, Solaris, Windows)
  • Adjust the Linux kernel

    • Configuring Caching Proxy behavior

  • Manage request processing
  • Enable HTTP/FTP methods
  • Associated directives
  • Configuration and Administration forms
  • Define mapping rules
  • Mapping rules
  • Configure a surrogate server
  • Associated directives
  • Configuration and Administration forms
  • Enable junction rewriting (optional)
  • Associated directives
  • Configuration and Administration forms

  • Manage delivery of local content
  • Define document root directory
  • Associated directives
  • Configuration and Administration forms
  • Define default welcome pages
  • Associated directives
  • Configuration and Administration forms

  • Manage FTP connections
  • Protect FTP files
  • Manage FTP server login
  • Manage FTP directory paths
  • Manage FTP chaining

  • Customize server processing
  • Server-side includes
  • Considerations for server-side includes
  • Configuration for server-side includes
  • Format for server-side includes
  • Directives for server-side includes
  • Customizing error messages
  • Real Time Streaming Protocol (RTSP) redirection
  • About RTSP redirection
  • RTSP limitation
  • RTSP enhancement
  • Configuring RTSP redirection

  • Configure header options
  • Associated directives
  • Configuration and Administration forms

  • About the application programming interface
  • Associated directives
  • Configuration and Administration forms

    • Configuring proxy server caching.

  • Overview of proxy server caching
  • Cache storage
  • The cache index
  • FTP caching
  • DNS caching
  • Cache exclusions
  • Cache management

  • Configuring basic caching
  • 1. Enable caching
  • 2. Configure cache storage
  • Optional customizations
  • Set cache memory
  • Set caching filters
  • Configure caching for query results and dynamically generated files
  • Configure file expiration and garbage collection
  • Configure automatic preloading
  • Configure cache sharing
  • Configure logging

  • Controlling what is cached
  • Configuring URL-based caching filters
  • Caching query responses
  • Additional requirements for query response caching
  • Caching locally served files
  • Caching files by partial URL
  • Related configuration file directives

  • Maintaining cache content
  • File expiration
  • Additional information about cache freshness
  • About dates in FTP
  • Configuring cache freshness
  • Garbage collection
  • Configuring garbage collection

  • Configuring the cache agent for automatic refreshing and preloading
  • Setting the server host name
  • Preloading the cache with specific files
  • Preloading the cache with frequently cached files
  • Delving
  • Related proxy configuration file directives
  • Starting the cache agent manually

  • Using a shared cache
  • Remote cache access
  • Configuring remote cache access
  • Configuring the Internet Caching Protocol plug-in
  • Configuring the ICP plug-in

  • Caching dynamically generated content
  • Configuring IBM WebSphere Application Server for proxy caching
  • Configure dynamic caching at the application server
  • Configure the application server adapter
  • Configuring the Caching Proxy for dynamic caching
  • Set the Service directive to enable the dynamic caching plug-in
  • Set the ExternalCacheManager directive to specify file sources

  • Tuning the proxy server cache
  • Choosing the cache storage media
  • Optimizing disk cache performance
  • Cache garbage collection
  • Platform-specific optimizations
  • AIX
  • Solaris
  • Windows

    • Configuring Caching Proxy security

  • About proxy server security

  • Server protection setups
  • Using the Configuration and Administration forms to set protection
  • Using configuration file directives to set protection
  • Default protection settings

  • Secure Sockets Layer (SSL)
  • The SSL handshake
  • Configuring secure remote administration
  • Key and certificate management
  • Certificate authorities
  • Using the IBM Key Manager utility
  • Creating a new key database, password, and stash file
  • Receiving a CA certificate
  • Storing a CA certificate
  • Supported cipher specifications

  • Enabling the support of cryptographic hardware

  • Using the Tivoli SecureWay Policy Director plug-in
  • Configuration
  • Steps to take before using the configuration script
  • Using the configuration script
  • Starting the Caching Proxy and Policy Director plug-in

  • Using the PAC-LDAP authorization module
  • Overview
  • Authentication
  • Authorization
  • Lightweight Directory Access Protocol (LDAP)
  • Installation
  • Additional requirements for secure PACD-LDAP server connections
  • GSKit 4 is required for PACD SSL
  • LD_PRELOAD environment variable must be set for Linux systems
  • Editing the ibmproxy.conf file to enable the PAC-LDAP authorization module
  • Editing the PAC-LDAP authorization module configuration files
  • paccp.conf
  • pac.conf
  • pacpolicy.conf
  • Creating pac_ldap.cred
  • Starting and stopping pacd

    • Monitoring the Caching Proxy

  • Configuring logging
  • About logs
  • Log file names and basic options
  • Access log filters
  • Reasons to control what is logged
  • Configuring access log filters
  • Default log settings
  • Maintaining and archiving logs
  • Log file scenario

  • Using the Server Activity Monitor

    • Appendixes

  • Appendix A. Using Caching Proxy commands
  • cgiparse command
  • cgiutils command
  • htadm command
  • htcformat command
  • ibmproxy command

  • Appendix B. Configuration file directives
  • Directives not changed on restart
  • Overview of directives
  • Acceptable values
  • Syntax of configuration file records
  • Caching Proxy directives
  • AcceptAnything -- Serve all files
  • AccessLog -- Name the path for the access log file
  • AccessLogExcludeMethod -- Suppress log entries for files or directories requested by a specified method
  • AccessLogExcludeMimeType -- Suppress Proxy access log entries for specific MIME types
  • AccessLogExcludeReturnCode -- Suppress log entries for specific return codes
  • AccessLogExcludeURL -- Suppress log entries for specific files or directories
  • AccessLogExcludeUserAgent -- Suppress log entries from specific browsers
  • AddBlankIcon -- Specify the URL for the icon used to align the headings of directory listings
  • AddDirIcon -- Specify the icon URL for directories on directory listings
  • AddEncoding -- Specify the MIME content encoding of files with particular suffixes
  • AddIcon -- Bind an icon to a MIME content type or encoding type
  • AddParentIcon -- Specify the URL for the icon representing a parent directory on directory listings
  • AddType -- Specify the data type of files with particular suffixes
  • AddUnknownIcon -- Specify the icon URL for unknown file types on directory listings
  • AdminPort -- Specify the port for requesting administrative pages or forms
  • AggressiveCaching -- Specify caching for noncacheable files
  • AlwaysWelcome -- Specify whether to search the requested directory for welcome files
  • appendCRLFtoPost -- Append CRLF to POST requests
  • ArrayName -- Name the remote cache array
  • Authentication -- Customize the Authentication step
  • Authorization -- Customize the Authorization step
  • AutoCacheRefresh -- Specify whether cache refreshing is to be used
  • BindSpecific -- Specify whether the server binds to one or all IP addresses
  • BlockSize -- Specify the size of blocks in the cache
  • CacheAccessLog -- Specify the path for the cache access log files
  • CacheAlgorithm -- Specify the cache algorithm
  • CacheByIncomingUrl -- Specify thebasis for generating cache file names
  • CacheClean -- Specify how long to keep cached files
  • CacheDefaultExpiry -- Specify the default expiration time for files
  • CacheDev -- Specify a storage device for the cache
  • CacheExpiryCheck -- Specify whether the server returns expired files
  • CacheFileSizeLimit -- Specify the maximum size for files to be cached
  • CacheLastModifiedFactor -- Specify the value for determining expiration dates
  • CacheLocalDomain -- Specify whether to cache the local domain
  • CacheMaxExpiry -- Specify the maximum lifetime for cached files
  • CacheMemory -- Specify the cache RAM
  • CacheMinHold -- Specify how long to keep files available
  • CacheNoConnect -- Specify the stand-alone cache mode
  • CacheOnly -- Cache only the files with URLs that match a template
  • CacheQueries -- Specify cache responses to URLs containing a question mark (?)
  • CacheRefreshInterval -- Specify the time interval for revalidating cached objects
  • CacheRefreshTime -- Specify when to start the cache agent
  • CacheTimeMargin -- Specify the minimum lifetime for caching a file
  • CacheUnused -- Specify how long to keep unused cached files
  • Caching -- Enable proxy caching
  • CdfAware -- Designate this instance of Caching Proxy as part of a Content Distribution Framework
  • CdfRestartFile -- Specify the file to store a file name to url mapping
  • CompressAge -- Specify when to compress logs
  • CompressCommand -- Specify the compression command and parameters
  • CompressDeleteAge -- Specify when to delete logs
  • ConfigFile -- Specify the name of an additional configuration file
  • ContinueCaching -- Specify how much of a file is required for caching
  • DefinePicsRule -- Supply a content-filtering rule
  • DefProt -- Specify default protection setup for requests that match a template
  • DelayPeriod -- Specify pausing between requests
  • DelveAcrossHosts -- Specify caching across domains
  • DelveDepth -- Specify how far to follow links while caching
  • DelveInto -- Specify whether the cache agent follows links
  • DirAccess -- Specify server response to requests with no matching Welcome files
  • DirBackgroundImage -- Specify a background image to directory listings
  • DirShowBytes -- Show byte count for small files on directory listings
  • DirShowCase -- Use case when sorting files on directory listings
  • DirShowDate -- Show the date of last modification on directory listings
  • DirShowDescription -- Show descriptions for files on directory listings
  • DirShowHidden -- Show hidden files on directory listings
  • DirShowIcons -- Show icons in directory listings
  • DirShowMaxDescrLength -- Specify the maximum length for descriptions on directory listings
  • DirShowMaxLength -- Specify the maximum length for file names on directory listings
  • DirShowMinLength -- Specify the minimum length for file names on directory listings
  • DirShowSize -- Show the file size on directory listings
  • Disable -- Disable HTTP methods
  • DisInheritEnv -- Specify the environment variables that are disinherited by CGI programs
  • DNS-Lookup -- Specify whether the server looks up client host names
  • Enable -- Enable HTTP methods
  • Error -- Customize the Error step
  • ErrorLog -- Specify the file where server errors are logged
  • ErrorPage -- Specify a customized message for a particular error condition
  • Defaults
  • EventLog -- Specify the path for the event log file
  • Exec -- Run a CGI program for matching requests
  • ExternalCacheManager -- Configure the Caching Proxy for dynamic caching from IBM WebSphere Application Server
  • Fail -- Reject matching requests
  • flexibleSocks -- Enable flexible SOCKS implementation
  • FTPDirInfo -- Generate a welcome or description message for a directory
  • ftp_proxy -- Specify another proxy server for FTP requests
  • FTPUrlPath -- Specify how FTP URLs are interpreted
  • Gc -- Specify garbage collection
  • GCAdvisor -- Customize the garbage collection process
  • GcHighWater -- Specify when garbage collection begins
  • GcLowWater -- Specify when garbage collection ends
  • gopher_proxy -- Specify another proxy server for Gopher requests
  • GroupId -- Specify the group ID
  • HeaderServerName -- Specify the name of the proxy server returned in the HTTP header
  • Hostname -- Specify the fully qualified domain name or IP address for the server
  • http_proxy -- Specify another proxy server for HTTP requests
  • HTTPSCheckRoot -- Filter HTTPS requests
  • ICP_Address -- Specify IP address for ICP queries
  • ICP_MaxThreads -- Specify maximum threads for ICP queries
  • ICP_Peer -- Specify a member of an ICP cluster
  • ICP_Port -- Specify port number for ICP queries
  • ICP_Timeout -- Specify maximum wait time for ICP queries
  • IgnoreURL -- Specify URLs that are not refreshed
  • imbeds -- Specify whether server-side include processing is used
  • InheritEnv -- Specify which environment variables are inherited by CGI programs
  • InputTimeout -- Specify the input timeout
  • JunctionRewrite -- Enables URL rewriting
  • KeepExpired -- Modify garbage collection for the proxy cache
  • KeyRing -- Specify the file path to the key ring database
  • KeyRingStash -- Specify the file path to the key ring database's password file
  • ListenBacklog -- Specify the number of listen backlog client connections that the server can carry
  • LoadInlineImages -- Control the refreshing of imbedded images
  • LoadTopCached -- Specify the number of popular pages to refresh
  • LoadURL -- Specify the URLs to refresh
  • Log -- Customize the Log step
  • LogArchive -- Specify the behavior of log archiving
  • LogFileFormat -- Specify the access log format
  • LogToGUI (Windows only) -- Display log entries in the server window
  • LogToSyslog -- Specify whether to send access information to the system log (UNIX only)
  • Map -- Change matching requests to a new request string
  • MaxActiveThreads -- Specify the maximum number of active threads
  • MaxContentLengthBuffer -- Specify the size of the buffer for dynamic data
  • MaxPersistRequest -- Specify the maximum number of requests to receive on a persistent connection
  • MaxQueueDepth -- Specify the maximum number of URLs to queue
  • MaxRuntime -- Specify the maximum time for a cache agent run
  • MaxSocketPerServer -- Specify the maximum open sockets for server
  • MaxUrls -- Specify the maximum number of URLs to refresh
  • Member -- Specify a member of an array
  • Midnight -- Specify the API plug-in used to archive logs
  • NameTrans -- Customize the Name Translation step
  • NoBG -- Run the Caching Proxy process in foreground
  • NoCaching -- Specify that files with URLs that match a template are not cached
  • NoLog -- Suppress log entries for specific hosts or domains that match a template
  • no_proxy -- Specify templates for connecting directly to domains
  • NoProxyHeader -- Specify the client headers to block
  • NumClients -- Specify the number of cache agent threads to use
  • ObjectType -- Customize the Object Type step
  • OutputTimeout -- Specify the output timeout
  • PacFilePath -- Specify the directory containing the PAC files
  • Pass -- Specify the template for accepting requests
  • PersistTimeout -- Specify the time to wait for the client to send another request
  • PICSDBLookup -- Customize the PICS label retrieval step
  • PidFile (UNIX only) -- Specify the file in which to store the process ID of Caching Proxy
  • Plug-in module directives
  • Port -- Specify the port on which the server listens for requests
  • PostAuth -- Customize the PostAuth step
  • PostExit -- Customize the PostExit step
  • PreExit -- Customize the PreExit step
  • Protect -- Activate a protection setup for requests that match a template
  • Protection -- Define a named protection setup within the configuration file
  • Protection subdirectives -- Specify how a set of resources is protected
  • Proxy -- Specify proxy protocols or reverse proxy
  • ProxyAccessLog -- Name the path for the proxy access log file
  • ProxyAdvisor -- Customize the servicing of proxy requests
  • ProxyForwardLabels -- Specify PICS filtering
  • ProxyFrom -- Specify a client with a From: header
  • ProxyIgnoreNoCache -- Ignore a reload request
  • ProxyPersistence -- Allow persistent connections
  • ProxySendClientAddress -- Generate the Client IP Address: header
  • ProxyUserAgent -- Modify User Agent string
  • ProxyVia -- Specify format of HTTP header
  • ProxyWAS -- Specify that requests are sent to WebSphere Application Server
  • PureProxy -- Disable a dedicated proxy
  • PurgeAge -- Specify the age limit for a log
  • PurgeSize -- Specify the limit for the size of the log archive
  • RCAConfigFile -- Specify an alias for ConfigFile
  • RCAThreads -- Specify the number of threads per port
  • ReadTimeout -- Specify the time limit for a connection
  • Redirect -- Specify a template for requests sent to another server
  • ReversePass -- Intercept automatically redirected requests
  • RTSPEnable -- Enable RTSP redirection
  • rtsp_proxy_server - Specify servers for redirection
  • rtsp_proxy_threshold -- Specify number of requests before redirection to a cache
  • rtsp_url_list_size -- Specify number of URLs in proxy memory
  • ScriptTimeout - Specify the timeout setting for scripts
  • SendHTTP10Outbound -- Specify the protocol version for proxied requests
  • SendRevProxyName -- Specify the Caching Proxy host name in the HOST header
  • ServerConnGCRun -- Specify the interval at which to run garbage collection thread
  • ServerConnPool -- Specify the pooling of connections to origin servers
  • ServerConnTimeout -- Specify maximum inactive period
  • ServerInit -- Customize the Server Initialization step
  • ServerRoot -- Specify the directory where the server program is installed
  • ServerTerm -- Customize the Server Termination step
  • Service -- Customize the Service step
  • SignificantURLTerminator -- Specify a terminating code for URL requests
  • SMTPServer (Windows only)-- set an SMTP server for the sendmail routine
  • SSLCaching -- Enable caching for a secure request
  • SSLCertificate -- Specify key labels for certificates
  • SSLCryptoCard -- Specify the installed cryptographic card
  • SSLEnable -- Specify listening on port 443 for secure requests
  • SSLForwardPort -- Specify which port to address for HTTP SSL upgrades
  • SSLOnly -- Disable listener threads for HTTP requests
  • SSLTunneling -- Enable SSL tunneling
  • SSLVersion -- Specify the version of SSL
  • SSLV2Timeout -- Specify the time to wait before a SSLV2 session expires
  • SSLV3Timeout -- Specify the time to wait before a SSLV3 session expires
  • SuffixCaseSense -- Specify whether suffix definitions are case sensitive
  • TLSV1Enable -- Enable Transport Layer Secure protocol
  • Transmogrifier -- Customize the Data Manipulation step
  • TransmogrifiedWarning -- Send warning message to client
  • TransparentProxy -- Enable transparent proxy on Linux or AIX
  • UpdateProxy -- Specify the cache destination
  • UserId -- Specify the default user ID
  • V2CipherSpecs -- List the supported cipher specifications for SSL Version 2
  • V3CipherSpecs -- List the supported cipher specifications for SSL Version 3
  • WebMasterEMail -- Set an e-mail address to receive select server reports
  • WebMasterSocksServer (Windows only)-- set a socks server for the sendmail routine
  • Welcome -- Specify the names of welcome files

    • Figures

    1. Delving

    About this book

    This preface describes the audience and purpose of this book, its organization, accessibility features, conventions and terminology, and related documents.

    Who should read this book

    The Caching Proxy Administration Guide is written for experienced network and system administrators who are familiar with their operating systems and with providing Internet services. Prior exposure to the Caching Proxy is not required.

    This book is not intended to support previous releases of Caching Proxy.

    Conventions and terminology used in this book

    This documentation uses the following typographical and keying conventions.

    Table 1. Conventions used in this book

    Convention Meaning
    Bold When referring to graphical user interfaces (GUIs), bold face indicates menus, menu items, labels, buttons, icons, and folders. It also can be used to emphasize command names that otherwise might be confused with the surrounding text.
    Monospace Indicates text you must enter at a command prompt. Monospace also indicates screen text, code examples, and file excerpts.
    Italics Indicates variable values that you must provide (for example, you supply the name of a file for fileName). Italics also indicates emphasis and the titles of books.
    Ctrl-x Where x is the name of a key, indicates a control-character sequence. For example, Ctrl-c means hold down the Ctrl key while you press the c key.
    Return Refers to the key labeled with the word Return, the word Enter, or the left arrow.
    % Represents the UNIX command-shell prompt for a command that does not require root privileges.
    # Represents the UNIX command-shell prompt for a command that requires root privileges.
    C:\ Represents the Windows command prompt.
    Entering commands When instructed to "enter" or "issue" a command, type the command and then press Return. For example, the instruction "Enter the ls command" means type ls at a command prompt and then press Return.
    [ ] Enclose optional items in syntax descriptions.
    { } Enclose lists from which you must choose an item in syntax descriptions.
    | Separates items in a list of choices enclosed in { }(braces) in syntax descriptions.
    ... Ellipses in syntax descriptions indicate that you can repeat the preceding item one or more times. Ellipses in examples indicate that information was omitted from the example for the sake of brevity.

    Accessibility

    Accessibility features help a user who has a physical disability, such as restricted mobility or limited vision, to use software products successfully. These are the major accessibility features in WebSphere Application Server, Version 5.0:

    How to send your comments

    Your feedback is important in helping to provide the most accurate and high-quality information. If you have any comments about this book or any other documentation about the Edge components of WebSphere Application Server:

    Related information

    Getting started with the Caching Proxy

    This part provides an overview of the Caching Proxy component, instructions for using the Configuration and Administration forms and Configuration Wizard, instructions for manually editing the ibmproxy.conf file, and procedures for starting and stopping the proxy server.

    This part contains the following topics:

    Overview

    Using the Configuration and Administration forms

    Using the Configuration Wizard

    Manually editing the ibmproxy.conf file

    Starting and stopping the Caching Proxy

    Overview

    The Caching Proxy intercepts data requests from a client, retrieves the requested information from content-hosting machines, and delivers that content back to the client. Most commonly, the requests are for documents stored on Web server machines (also called origin servers or content hosts) and delivered via the Hypertext Transfer Protocol (HTTP). However, you can configure the Caching Proxy to handle other protocols, such as File Transfer Protocol (FTP), and Gopher.

    The Caching Proxy stores cacheable content in a local cache before delivering it to the requester. Examples of cacheable content include static Web pages and JavaServer Pages (JSP) with dynamically generated but infrequently changing fragments. Caching enables the Caching Proxy to satisfy subsequent requests for the same content by delivering it directly from the local cache, which is much quicker than retrieving it again from the content host.

    Using the Configuration and Administration forms

    The Caching Proxy comes with HTML forms that can be served to requesting clients and used to configure the proxy server. These forms run CGI programs that edit the local proxy server configuration file, ibmproxy.conf. To use these forms, the proxy server must be running and must be configured to pass the forms from the local directory where they reside.

    By default, Caching Proxy is installed with Pass directives included in the ibmproxy.conf file that enable access to the Configuration and Administration forms. When a client requests the default home page from this proxy server, Frntpage.html is served. This page contains a hypertext link to the Configuration and Administration forms start page, wte.html.

    The Configuration and Administration forms are protected and require client authentication before they are served. For instructions on setting the administrator's ID and password, refer to Setting the administrator password.

    Browser requirements

    A Web browser used to access the Configuration and Administration forms must support the following:

    Accessing the Configuration and Administration forms

    To access the Configuration and Administration forms:

    1. Ensure that the proxy server is running. For instructions on starting the proxy server, refer to Starting and stopping the Caching Proxy.
    2. Direct an HTTP browser to request your proxy server's home page (Frntpage.html) or the Configuration and Administration start page (wte.html).
      Note:
      This page depends on your proxy server's actual mapping rules and can vary from the default pages shown in parentheses. 
      http://your.server.name[:port][/directory][/page.html]

      where

    3. Click Configuration and Administration forms to get to the server configuration forms. You are prompted for the administrator user name and password. Type an authorized user name and password. The Caching Proxy configuration client window opens.
      Note:
      The contents of the navigation frame on the left can take several seconds to load after the main page is displayed.
    4. The navigation frame on the left shows the five major categories of configuration forms:

      Click the triangular pointer at the left of a heading to expand the list of configuration forms in that category. Click a form to open it. The form shows the current configuration values (if any) in the input fields; if you have not changed the configuration since installation, these are default values.

    5. On any form, enter configuration information for that particular function. Each form provides instructions to assist you in deciding what changes to make. For further information, click the help icon, the question mark (?) at the top of each form. It provides the following links:
    6. After filling in a form, click Submit to update the server configuration with the changes you made. The Submit button is located below the input fields on each form. If you do not want to make the changes you indicated on the form, click Reset, and the fields on the form return to their original values.
    7. If you click Submit and your input is accepted, the following message is displayed in the upper frame: 
      The requested configuration changes have been completed successfully

      If the input is not accepted, an error message is displayed in the upper frame, indicating which settings are not acceptable.

    8. To restart the proxy server, click the server restart icon (|) in the upper frame. When the proxy server receives the restart command, it stops accepting requests from clients but completes any requests that are already in process. After reloading the changed configuration file, the proxy starts accepting client requests again.
      Note:
      Changing certain directives either by using the Configuration and Administration forms or by editing the ibmproxy.conf file requires that instead of a restart, you stop the server completely and then start it again before the changes can take effect. Those directives are listed in Table 6.

    Setting the administrator password

    After installing the Caching Proxy packages, you must create an administrator identification and password for accessing the Configuration and Administration forms. The default proxy server configuration authenticates users that request the Configuration and Administration forms by using the webadmin.passwd passwords file in either the /opt/ibm/edge/cp/server_root/protect/ directory on UNIX(R) systems or the \Program Files\IBM\edge\cp\etc\ directory on Windows(R) systems. Package installation does not overwrite an existing webadmin.passwd file.

    Use the following commands to add an administrator entry to the webadmin.passwd file:

    For a detailed description of the htadm command, refer to htadm command.

    Using the Configuration Wizard

    The Caching Proxy Configuration Wizard enables you to quickly configure an installed Caching Proxy. This program sets only the essential directives that are required to modify the behavior of the Caching Proxy to function as a surrogate. The proxy server can require additional configuration.

    To use the Caching Proxy Configuration Wizard:

    1. Start the Configuration Wizard.

      On Windows systems: click Start -> Programs -> IBM WebSphere -> Edge Server -> Caching Proxy -> Configuration Wizard.

      On UNIX systems: enter the command /opt/ibm/edge/cp/wizard/wsescfgwiz.

    2. Select the network port on which the proxy server will listen for HTTP requests.
    3. Type the name of the target content server.
    4. Enter the user ID and password for the proxy server administrator.

    Notes:

    1. The Configuration Wizard sets the following directives: 
      AdminPort 8008
Proxy /* http://content server :port

    2. If the Configuration Wizard is used to configure the proxy server, then to enable SSL, a mapping rule must be created to proxy requests received through port 443. For more information, refer to Define mapping rules.

      Examples: 

      Proxy /* http://content server :443

      or 

      Proxy /* https://content server :443

    Manually editing the ibmproxy.conf file

    It is recommended that you use the Configuration and Administration forms to configure the Caching Proxy, but you can also configure your proxy server by editing the configuration file directly.

    The configuration file is made up of statements called directives. To change your configuration, edit the configuration file by modifying the directives, and save your changes. You can use almost any text editor, such as emacs and vi, to edit the configuration file.

    Note:
    Do not use the text file editor that is included in the Solaris Common Desktop Environment (CDE). The Solaris editor sometimes modifies the file's owning group and changes properties of the file link so that the Configuration and Administration forms cannot write to the configuration file.
    Your changes to the configuration file take effect when you restart the server, unless you changed one of the directives identified in Table 6. If you changed one of the directives in that list, you must stop the server and start it again. For instructions, see Starting and stopping the Caching Proxy.

    Appendix B, Configuration file directives describes each of the configuration file directives and gives details about syntax.

    Starting and stopping the Caching Proxy

    The Caching Proxy is designed to run continuously as a background process with minimal operator intervention. Typically, the proxy server starts during the boot cycle of the machine and is stopped only when maintenance is required. The proxy server may be manually started when necessary. The proxy server can also be passed a restart instruction, which effectively stops then starts the proxy server without disrupting active client connections.

    Automatic startup and shutdown on UNIX systems

    On UNIX systems, an ibmproxy initialization script and associated symbolic links are placed in the appropriate /etc/ directories when the Caching Proxy is installed. These scripts are then integrated into the startup and shutdown routines of the operating system. You can change the configuration settings for automatic restart by editing the ibmproxy script and changing the ibmproxy command options.

    Note:
    Solaris file descriptor limit

    It is possible that the Caching Proxy initialization script can fail to set the desired maximum number of file descriptors due to the Solaris systemwide limit on file descriptors. If the systemwide maximum is less than the setting in the Caching Proxy initialization script, then the systemwide limit is used. You can change the file descriptor limit to avoid proxy performance problems that can result from too low a value (less than 1024). Issue the ulimit command to view the number of descriptors that are currently available. If the value is less than 1024, increase the file descriptor limit. To increase the file descriptor limit to 1024, add the following line to the /etc/system file: 

    set rlim_fd_cur=0x400

    Disabling automatic startup and shutdown

    To disable automatic startup and shutdown:

    Manual startup on UNIX systems

    Regardless of the startup method, the ibmproxy command is eventually invoked, either directly from the command prompt or from within a script. For a detailed description of the ibmproxy command, refer to ibmproxy command. Examples of only the most commonly used arguments follow.

    On AIX:

    On Linux:

    On Solaris:

    Startup as a Windows service

    If the Caching Proxy is installed as a Windows service, it is started like any other Windows service:

    1. Click Start -> Settings -> Control Panel.
    2. In the Control Panel window, double-click Services. (On Windows 2000, double-click Administrative Tools -> Services.)
    3. In the Services window, highlight Caching Proxy.
    4. Click Start to initiate the Caching Proxy service.

    If the Caching Proxy is installed as a service, it can be configured to start up automatically when Windows starts. In that case, you do not have to log on before the proxy can serve requests. To have your proxy start automatically:

    1. Click Start -> Settings -> Control Panel.
    2. In the Control Panel window, double-click Services. (On Windows 2000, double-click Administrative Tools -> Services.)
    3. In the Services window, highlight Caching Proxy.
    4. Click the Automatic radio button, then click Start to initiate the Caching Proxy service automatically when Windows starts.

    Refreshing the PATH environment variable

    If the Caching Proxy is marked as Started in the Services window, but the proxy is not working, the machine might not have been restarted after the proxy was installed. If the Caching Proxy service is set to interact with the desktop, failure to restart can also cause the following error message to appear in a pop-up box: Message catalog error: the message catalog could not be loaded or is invalid

    The machine must be restarted so that the value of the PATH environment variable is refreshed in the Windows registry. If the registry is not refreshed, it is possible for the PATH variable to show the correct Caching Proxy and GSK4 paths but to function incorrectly.

    Note:
    A potential conflict exists for Windows systems when both the Caching Proxy and another application, such as a network file system, run as services. The Caching Proxy sometimes cannot interpret a path containing a remote drive owned by a file system application that also is running as a service.

    The problem can occur if the path for the file system service appears before the path for the Caching Proxy service in the Windows PATH environment variable. Altering the PATH variable to put file system services near the end of the setting can solve this problem.

    This problem does not affect remote drives controlled by applications that do not run as Windows services. For example, the Caching proxy can access shared drives on other Windows machines that are visible through a local area network (LAN).

    Startup as a Windows application

    Using the Start menu

    When the Caching Proxy is installed as a Windows application, the installation procedure creates a Caching Proxy entry as a submenu of the Start menu. To start the Caching Proxy as an application, click Start -> Programs -> IBM WebSphere -> Edge Server -> Caching Proxy.

    This startup procedure runs the proxy server with the current configuration settings. If you want to specify other settings at startup time, use the command startup procedure (see the next section).

    Using the command prompt

    To start the server from any Windows or DOS command prompt, use the ibmproxy command. If you have not shut down and restarted Windows since you installed the server, enter the full path name for this command, as follows, (by default): 

    c:\Program Files\IBM\edge\cp\bin\ibmproxy.exe

    The ibmproxy command starts the server with the current configuration settings. If you have not changed the server configuration since installation, the current configuration is based on the information you entered during installation and on the default options.

    The ibmproxy command starts the server as an application, even if you have installed the Caching Proxy to run as a service. To force the server to run as an application, you can also specify the command option -noservice. Other command options change the configuration settings at run time.

    Starting multiple proxy servers

    Multiple instances of the proxy server can run concurrently, but each instance must listen on a separate port. On AIX systems, only one instance can be started with SRC. Unique configuration files must be specified for all instances of the server because the configuration file identifies a port number, and this number must be different for each server on a particular machine. To start an additional instance of the server (when at least one is already running), enter the following command:

    where other_config_file is a unique configuration file.

    When starting multiple instances of the server, record the process ID that is displayed for each instance. These IDs are required to stop specific instances of the server.

    Note:
    On Linux systems running multiple instances of the server, the command /etc/rc.d/init.d/ibmproxy stop stops only the last server that was started. Other instances must be stopped separately. Refer to Manual shutdown on UNIX systems for related information.

    Manual shutdown on UNIX systems

    To stop the server:


    Table 2. Start and stop methods for UNIX systems

    Start method Stop method
    From /etc/inittab (On AIX) Enter stopsrc -s ibmproxy
    From /etc/rc.d/init.d (On Linux) Enter /etc/rc.d/init.d/ibmproxy stop
    ibmproxy
    1. Find the ibmproxy process ID: On AIX, enter ps -aef | grep "ibmproxy". On Linux, enter ps -aux | grep ibmproxy | grep server_ID. On Solaris, enter ps -ef | grep "ibmproxy"
    2. Stop the ibmproxy process: Enter kill process_id

    To stop all servers on this machine: Enter killall ibmproxy

    ibmproxy -nobg Enter ctrl-c
    ibmproxy -r -other_config_file(On AIX) Enter stopsrc -s ibmproxy -p process_id
    ibmproxy -r -other_config_file(On Linux)
    1. Find the ibmproxy process ID: Enter ps aux | grep ibmproxy | grep process_id
    2. Stop the ibmproxy process: Enter kill process_id

    To stop the server at a root prompt, enter:

    Limitations of the shutdown commands

    You can experience the following limitations when using the shutdown commands:

    Manual shutdown on a Windows system

    You can stop the Caching Proxy server in the same ways that you stop other Windows programs.

    If the proxy is installed as a service:

    1. Click Start -> Settings -> Control Panel.
    2. In the Control Panel window, double-click Services. (On Windows 2000, double-click Administrative Tools -> Services.
    3. In the Services window, highlight Caching Proxy.
    4. Click Stop to stop the Caching Proxy service.

    If the proxy is not installed as a service, do any of the following to stop the Caching Proxy:

    Restarting after configuration changes

    After changing the server configuration (by using the Configuration and Administration forms or by editing the ibmproxy.conf file), you must restart the server before the changes take effect. In most cases, you can restart the server without stopping it first. But some settings are not refreshed by a simple restart. For more information, see Table 6.

    To restart the server without stopping it first, click the Restart button on any Configuration and Administration form, or enter the following command: 

    ibmproxy -restart

    Configuring and tuning the Caching Proxy process

    This part explains how the Caching Proxy component interacts with the operating system, computer hardware, and network. It also provides procedures for configuring this interaction. These elements of proxy server configuration are typically managed by the system administrator and must be carefully coordinated with network resources, such as IP addresses and host names, as well as with system resources, such as available memory and CPU cycles.

    This part contains the following topics:

    Define the server

    Establish process ownership

    Manage connections

    Tune the proxy server process

    Define the server

    The Caching Proxy typically runs as a background process on a host computer system that is configured to perform as a network server. This process is associated with (bound to) one or all active Internet Protocol (IP) addresses on the host computer system. It listens for various Internet protocols, such as FTP and HTTP, on specified ports and performs actions on these requests in accordance with its behavioral configuration. (For more information, refer to Configuring Caching Proxy behavior.)

    By default, the Caching Proxy assumes the name of its host computer system. You can override this default behavior by deliberately specifying a host name for the proxy server. In order to bind the Caching Proxy to a specific IP address, the host name of the proxy server must be changed to equal that IP address.

    Note:
    In the event that the proxy server attempts to bind to an IP address, and that host name is not set to an available IP address, the bind will fail and the proxy server will listen on all available IP addresses.

    Regardless of which IP address a proxy server is bound to, only one process can listen on a specific port at one time. In other words, each port number is associated with the host computer system, not to the IP address; therefore you cannot run two proxy servers on the same machine, each bound to a different IP address but both listening for HTTP traffic on port 80.

    The host name of the proxy server does not affect how client traffic is resolved. The proxy server does not compare its own host name with the value of the host name argument in the header of the HTTP request. The proxy server does not support name-based or IP-based virtual hosting. However, mapping rules can be written to create a port-based virtual hosting environment. The host name of the proxy server is occasionally incorporated into dynamically generated local content pages, such as error messages. It is also passed backed to the requested client as the value of the Via argument in the HTTP header.

    The proxy server can be configured to replace the host name of the requesting client with the host name of the proxy server prior to passing the request on to the destination server. Doing so forces the destination server to maintain the communication channel through the proxy server, rather than establishing a direct connection with the client.

    Define the proxy server process by specifying the physical location of the proxy server files on the host computer system, the name with which proxy server refers to itself, and the ports on which it listens as values for the ServerRoot, Hostname, and Port directives. If the host has multiple IP addresses, the proxy server can be bound to a specific address by setting the value of the BindSpecific directive to on and setting the value of the Hostname directive equal to the IP address.

    An administration port provides a method of accessing the Configuration and Administration forms and maintaining the server. To provide access to the proxy server through an administration port, specify a value for the AdminPort directive. Requests received on the administration port are not queued with requests received on the standard port. Mapping rules can be written to allow access to the Configuration and Administration forms through this port.

    To override the default name of the server that is running, such as IBM-PROXY or IBM_HTTP_SERVER, specify a value for HeaderServerName directive. This value populates the HTTP response server field.

    To improve proxy performance, the value of the PureProxy directive can be set to on. This completely disables all caching functionality.

    Associated directives

    The following directives define the proxy server process:

    For more information, refer to Manually editing the ibmproxy.conf file.

    Configuration and Administration forms

    The following Configuration and Administration forms edit the values of the associated directives:

    Note:
    You cannot use the Configuration and Administration forms to edit the HeaderServerName directive.

    For more information, refer to Using the Configuration and Administration forms.

    Establish process ownership

    When a user other than the superuser root starts the Caching Proxy, that user maintains ownership of all of the processes associated with the proxy server. However, if the Caching Proxy is started by the superuser root, a set user ID function within the proxy server reads the UserId and GroupId directives in the ibmproxy.conf file and changes process ownership to the specified user and group. This is done to limit file access and protect the computer system. If you change the UserId or GroupId directives, you must update the ownership and permissions for log directories and other files, such as an access control list (ACL), that are used by the proxy server.

    Note:
    On Linux systems, only processes and threads responsible for listening for connections will have their ownership changed. Processes and threads responsible for other activities within the workflow will still be owned by root. All processes and threads receive process ID (PID) numbers. The ps command lists all process IDs, regardless of whether they are associated with a process or thread.

    Establish the ownership of the proxy server process by specifying the user identification, group identification, and location of the file in which the process ID is recorded as values for the UserID, GroupID, and PidFile directives.

    To force the proxy server process to run as foreground process, set the value of the NoBG directive to on.

    Associated directives

    The following directives establish proxy server process ownership:

    For more information, refer to Manually editing the ibmproxy.conf file.

    Configuration and Administration forms

    The following Configuration and Administration forms edit the values of the associated directives:

    Note:
    You cannot use the Configuration and Administration forms to edit the NoBG directive.

    For more information, refer to Using the Configuration and Administration forms.

    Manage connections

    The Caching Proxy spawns a new thread to handle each client request. If no threads are available, the proxy server holds requests until more threads become available. As the number of active threads increases, the proxy server consumes more memory. Specify the maximum number of active threads as the value for the MaxActiveThreads directive.

    The listen backlog is the number of pending requests for client connections that the server logs before it refuses connections with new clients. Base this setting on the number of requests that the server can process in a few seconds. A server must respond to a client connection before it times out. Specify the maximum number of connections that can be held in the backlog as the value for the ListenBacklog directive.

    The proxy server can maintain persistent client/server connections. With a persistent connection, the server accepts multiple requests from the client and sends responses over the same TCP/IP connection. Using persistent connections reduces latency for clients and lowers the CPU load on the proxy server, at the low cost of a small increase in server memory. Overall throughput is increased when the server does not establish a separate TCP/IP connection for each request and response, and the TCP/IP connection can be used with greatest efficiency when the connection is persistent.

    Server-side connection pooling applies the benefits of persistent connections on the server side by allowing the reuse of existing connections between a proxy server and the origin servers. Each reused connection saves three TCP packets (two three-way handshake packets to set up the connection, and one to close it). The benefits of server-side connection pooling include:

    Note:
    Connection pooling is recommended only in a controlled environment. It can degrade performance where the origin servers are not HTTP 1.1 compliant. Note also that it is critical that the origin servers are set up properly. The following is a simple example from the Apache 1.3.19 configuration file:

    These settings keep connections to the Web servers open as long as they are being used and allow the proxy, rather than the origin server, to manage the connections. Therefore, the connections are pooled only to the extent needed.

    When server-side connection pooling is enabled, HTTP connections to the origin servers are pooled. SSL connections are also pooled in configurations where the SSLEnable directive for the proxy is set to on.

    Configure how connection pooling is maintained by specifying the maximum number of idle sockets to hold per server at any one time, how long the server waits before terminating an idle persistent connection, and the time interval at which the garbage collection thread checks for timed-out connections (the default is two minutes).

    Define the amount of time that various connections remain open as values for the InputTimeout, OutputTimeout, PersistTimeout, ReadTimeout, and ScriptTimeout directives.

    Associated directives

    The following directives manage connections with the proxy server process:

    For more information, refer to Manually editing the ibmproxy.conf file.

    Configuration and Administration forms

    The following Configuration and Administration forms edit the values of the associated directives:

    Notes:

    1. You cannot use the Configuration and Administration forms to edit the ServerConnPool, MaxsocketPerServer, ServerConnTimeout, or ServerConnGCRun directives.

    2. The PersistTimeout can be edited from either the Server Configuration -> System Management -> Performance form or the Server Configuration -> System Management -> Timeouts form.

    For more information, refer to Using the Configuration and Administration forms.

    Tune the proxy server process

    You can noticeably improve the performance of the Caching Proxy by properly setting up and tuning the system. The following are suggestions for improving setup and tuning.

    Set performance-related directives

    The following directives significantly affect the performance of the proxy server process:

    The following Configuration and Administration form fields edit the values of the associated directives:

    Examine other applications

    Examine the services or daemons that are running on your system and remove those that are not required to increase available memory and CPU cycles. For example, if your system is running a Web server that serves only a few Web pages, consider using the Caching Proxy as your only Web server. Disable other Web servers as follows:

    Verify paging space

    Ensure that your system has sufficient paging space for proper operation. The system needs twice as much paging space as physical memory. If possible, spread the paging space across multiple physical drives. For example, a Netfinity(R) 5000 server with 512 MB of memory and five SCSI drives needs 1 GB of total paging space with approximately 200 MB on each drive.

    Tune the file system

    The Caching Proxy creates and destroys many files during its operation. If your proxy server records accesses (using the access log, proxy access log, or cache access log), direct the logs to their own file system so that if the logs grow unexpectedly, they do not use space intended for another function (such as the cache).

    Tune TCP/IP configuration

    The Caching Proxy is sensitive to changes to TCP/IP configurations. Lowering the TCP/IP values on any operating system might cause the proxy server to perform in an unexpected manner. More specifically, if the TCP/IP values are set too low, connections might be reset by clients that connect to the proxy server or by origin servers to which the proxy connect. This is especially true for clients that connect to the proxy server through a low bandwidth connection (56700 bps or lower). If TCP/IP parameters must be lowered, proceed with caution.

    Tune TCP time wait interval for high-load environments (Linux, Solaris, Windows)

    The TCP time wait interval specifies the length of time that a socket waits for a FIN packet from the sender before forcibly closing. In high-load environments, the proxy server may appear to stall if a large number of sockets remain suspended in the TIME_WAIT state after their connections are closed. Reducing the TCP time wait interval will reduce the number of suspended sockets and, in high-load environments, may prevent the proxy server from appearing to stall. It is recommended that this interval be set to 5 seconds.

    To set the TCP time wait interval to 5 seconds:

    Adjust the Linux kernel

    Several limits in the Linux kernel are low and can be modified. Some can be changed through the /proc file system, and others require recompiling the kernel.

    Note: The /proc file system is virtual; that is, it does not exist physically on the disk. Instead, it serves as an interface into the Linux kernel. Because it does not exist, your input values are lost on restart. Therefore, place changes that you want to make to the /proc file system in the /etc/rc.d/rc.local file on RedHat or in the /etc/rc.config file on SuSE. Changes are then always activated at restart.

    Some recommendations follow:

    If you decide to rebuild your kernel, enable only those options that you definitely need. If you do not need a specific daemon, do not run it.

    Configuring Caching Proxy behavior

    This part explains how the Caching Proxy component responds to client requests and provides procedures for configuring this behavior. These elements of proxy server configuration are typically managed by a Web administrator and do not affect other processes on the host computer system or other computer systems within the network.

    This part contains the following topics:

    Manage request processing

    Manage delivery of local content

    Manage FTP connections

    Customize server processing

    Configure header options

    About the application programming interface

    Manage request processing

    When the Caching Proxy receives a client request, it performs the action specified in the method field on the object specified in the URL field, if the requested method has been enabled. The proxy server resolves the URL according to a set of mapping rules defined by the administrator. These mapping rules might instruct the Caching Proxy to act as a Web server and retrieve the object from the local file system or to act as a proxy server and retrieve the object from an origin server.

    This topic describes how to enable methods, define mapping rules, and configure a surrogate proxy server.

    Enable HTTP/FTP methods

    Client requests to the server include a method field that indicates the action that the server is to perform on the specified object.

    Following is a list of methods that the proxy server supports and a description of how it responds to a client request containing the method if the method is enabled.

    Note:
    Some methods are the same for HTTP and for FTP requests. Enabling these methods for HTTP also enables them for FTP.

    DELETE
    The proxy server deletes the object identified by the URL. DELETE allows clients to erase files from your Caching Proxy. Use server protection setups to define who can use DELETE and on which files. For details, see Server protection setups.

    GET
    The proxy server returns whatever data is identified by the URL. If the URL refers to an executable program, the proxy returns the output of the program. This method can be handled over persistent connections.

    HEAD
    The proxy server returns only the HTTP document header identified by the URL without the document body.

    OPTIONS
    The proxy server returns information about the communications options on the request-response chain identified by the URL. This method allows a client to determine the options and requirements associated with an object, or the capabilities of a server, without having to act on or retrieve the object.

    POST
    The request contains data and a URL. The proxy server accepts the data enclosed in the request as a new subordinate of the resource identified in the URL, which processes the data. The resource can be a data-accepting program, a gateway to some other protocol, or a separate program that accepts annotations.

    The POST method is designed to handle the annotation of existing resources. Examples include posting a message to a bulletin board, newsgroup, mailing list, or similar group of resources; providing a block of data, for example, from a form to a data-handling program; or extending a database through an append operation. In the Caching Proxy itself, the POST method is used to process the Configuration and Administration forms.

    This method can be handled over persistent connections.

    PUT
    The request contains data and a URL. The proxy server stores the data in the resource identified in the URL. If the resource already exists, PUT replaces it with the data contained in the request. If the resource does not exist, PUT creates it and populates it with the data contained in the request. This method can be handled over persistent connections.

    Enabling the PUT method allows files to be written to the Caching Proxy by using HTTP and FTP. Because PUT allows clients to write to the Caching Proxy, you need to use server-protection setups to define who can use PUT and the files on which PUT can be used. (See Server protection setups.)

    TRACE
    The proxy server echoes the request message sent by the client. This method allows the client to see what is being received at the other end of the request chain and use that data for testing or diagnostics. The content type of the proxy response is message/http.

    Associated directives

    The following directives enable HTTP/FTP methods:

    For more information, refer to Manually editing the ibmproxy.conf file.

    Configuration and Administration forms

    The following Configuration and Administration forms edit the values of the associated directives:

    Note:
    If you disable the POST method, you cannot use the Configuration and Administration forms to configure the Caching Proxy.

    For more information, refer to Using the Configuration and Administration forms.

    Define mapping rules

    Mapping rules are configuration directives that cause client requests to the Caching Proxy to be processed in some way, for example, passed to an origin server (proxied), redirected, or rejected. Setting mapping rules correctly is important to the proper functioning of your Caching Proxy. Mapping rules affect the following:

    Mapping rule directives use the following form: 

    rule template target [IP_address | host_name]:[port]

    Only requests that match the given template and IP-port combination are subject to that rule. A template can contain wildcards, for example, https://**/*.asp.

    The order in which the rules appear in the configuration file is significant. Except for Map directives, as soon as the request is matched to a template, it is processed and subsequent rules are not evaluated. The Map directive replaces the URL in the request. This new request continues to be compared to the remaining mapping rules.

    Mapping rules

    The following mapping rules apply to client requests that match the given template:

    The following mapping rule applies to the origin server response:

    The following mapping rules apply to API applications:

    Configure a surrogate server

    To configure a standard surrogate:

    This allows all HTTP traffic on port 80 to be proxied to the origin server. Traffic entering on the administration port does not match the initial wildcard proxy rule, and so it is unaffected. The remaining mapping rules are used to process the request.

    Associated directives

    The following directives define mapping rules:

    For more information, refer to Manually editing the ibmproxy.conf file.

    Configuration and Administration forms

    The following Configuration and Administration form edits the values of the associated directives:

    Note:
    The Configuration and Administration forms do not support the port number argument.

    For more information, refer to Using the Configuration and Administration forms.

    Enable junction rewriting (optional)

    This directive enables the junction rewriting routine within the Caching Proxy to rewrite responses from origin servers to ensure that server relative URLs get mapped to the appropriate origin server when junctions are used. The junction rewriting plug-in must also be enabled. Junctions are defined by the proxy mapping rules.

    The following are examples of valid junctions that can be acted upon by the junction rewriting routine:

    The following is an example of a valid junction that will not be acted upon by the junction rewriting routine:

    The following are examples of invalid junctions:

    These mapping rules have created junctions for shopserver, authserver, and b2bserver. Consider that shopserver returns an HTML document with the following URLs contained within appropriate HTML tags:

    The junction rewriting routine will rewrite the server relative references using the proxy mapping rules as follows:

    The junction rewriting routine affects the following tags:

    Table 3. Tags affected by the junction rewriting routine

    Tag Attributes
    !-- URL
    a href
    applet archive, codebase
    area href
    base href
    body background
    del cite
    embed pluginspage
    form action
    input src
    frame src, longdesc
    iframe src, longdesc
    ilayer src, background
    img src, usemap, lowsrc, longdesc, dynsrc
    layer src, background
    link href
    meta url
    object data, classid, codebase, codepage
    script src
    table background
    td background
    th background
    tr background
    Note:
    The junction rewriting routine will not affect tags generated by JavaScript or by plug-ins within the browser.

    Associated directives

    The following directives are used to enable the junction rewriting routine and plug-in.

    For more information, refer to Manually editing the ibmproxy.conf file.

    Configuration and Administration forms

    The following Configuration and Administration form can be used to enable the junction rewriting plug-in:

    Note:
    The Configuration and Administration forms do not support the JunctionRewrite directive.

    For more information, refer to Using the Configuration and Administration forms.

    Manage delivery of local content

    The Pass and Exec mapping rules are used to deliver local content to a requesting client. By default, a Pass rule with a wildcard template is placed as the last mapping rule. This rule directs all requests that do not match previous templates to retrieve files from a target directory, which is commonly referred to as the document root directory.

    When a URL is received that does not contain a file name, the Caching Proxy satisfies the request by searching the specified directory, if one is given, or the document root directory, if no directory is specified, for a file that matches the list of welcome pages specified in the configuration file. If more than welcome page is defined, the proxy server searches for the pages in the order in which they are defined. The first welcome page found is served.

    The server home page is the Web page that the server delivers by default when it receives a request that contains only the server's URL without a directory or file name. As previously explained, the default wildcard mapping rule requires that the server home page is stored in the document root directory and that the filename of the home page matches a defined welcome page.

    Note:
    Some Web browsers use the term home page to refer to the first page the browser loads when it is started. This document uses the term only for the server home page.

    This topic describes how to define the document root directory and welcome pages.

    Define document root directory

    The default document root directories are: