Proxy and NTP synchronization source configuration - BlueCat DNS Edge

DNS Edge User Guide

prodname
BlueCat DNS Edge
Configure your DNS Edge service point to route https traffic through a proxy. You can also configure an NTP synchronization source for service points.
Note:
  • Currently, HTTP is the only supported proxy type.
  • SOCKS proxy servers are not supported.
  • Basic authentication is supported.
  • The proxy server must be configured to allow HTTP POST traffic.
  • The proxy server must be able to resolve all DNS Edge Cloud addresses.
  • For proxy servers and firewalls that do SSL interception:
    • mTLS must exclude/except *.bluec.at.
    • You can't install certificates as a workaround.
  • If the service point can't reach the proxy, it will attempt a direct connection to the target host.
  • The proxy configuration at boot time will remain active. Any subsequent changes will require a reboot to take effect.
  • The only tested and supported authorization is Basic authorization with username and password provided.
  • If you are using DHCP to configure the Service Point proxy, you must reboot the Service Point for changes to take effect.

Before you begin

Ensure your DNS Edge site image has been installed in your ESX environment and is powered off.

Configuring DNS Edge for your proxy method and NTP server
  1. Launch the VMware vSphere Client.
  2. From your resource pool, right-click the site image and select Edit Settings.
  3. From the Virtual Machine Properties window, select the Options tab.
  4. Under Settings, select General then click Configuration Parameters.
  5. Choose one of the following steps:
    • To configure the proxy method, from the Configuration Parameters window, click Add Row to add each of the following parameters with the associated values:
      guestinfo.bluecat.proxyUser             user
      guestinfo.bluecat.proxyPassword         password
      guestinfo.bluecat.proxyHost             123.123.12.1
      guestinfo.bluecat.proxyPort             8080
      Note: The value for guestinfo.bluecat.proxyHost can be either an IP address or a hostname.
    • To configure the NTP sychronization source, from the Configuration Parameters window, click Add Row to add the following parameter:
      guestinfo.bluecat.ntpServers   123.123.12.2 123.123.12.3
      Note: The values for guestinfo.bluecat.ntpServers can be either IP addresses or hostnames.
      Note: If the service point can't find an NTP server in guestinfo, it will try to obtain one over DHCP. If still not found, the service point will fall back to the default coreos NTP servers:
      • 0.coreos.pool.ntp.org
      • 1.coreos.pool.ntp.org
      • 2.coreos.pool.ntp.org
      • 3.coreos.pool.ntp.org
  6. Click OK.
  7. From the Virtual Machine Properties window, click OK.
  8. Power on the site VM.
Note: After you have completed these steps, BlueCat recommends enabling the site image to auto-start when the system reboots.