Proxy Usage
We recommend using a transparent proxy! A transparent proxy can hide its settings, hence it is safer and requires no additional configuration on the target machine.
This feature is available from Sandbox version 1.9.3
For now only offline license activation is available with non-transparent proxy
Proxy server configuration
The following URLs are recommended to bypass:
- https://api.metadefender.com/v4/ (For OPSWAT Reputation lookup)
- https://activation.dl.opswat.com/ (To reach the OPSWAT license server)
Sandbox server configuration
The following configuration is necessary for the installer and the product to work properly behind a non-transparent HTTP proxy.
Before Sandbox installation
Set the following configuration settings before installation.
System-wide proxy configuration
Update the /etc/environment config, copy the proxy variables to the end of the file as described below. This will be used by tools like WGET, CURL, APT.
Set the NO_PROXY variable based on the example below. 172.16.0.0/12 and 192.168.0.0/16 are used by Docker, do not reuse them for other purposes.
Use your own proxy URLs instead of the example proxy.example.com:3128.
The proxy format is <protocol>://<user>:<password>@<domain or IP address>:<port> where <user> and <password> are URL encoded strings.
Once the file is updated log out and log in again for these changes to take effect:
exithttp_proxy=http://proxy.example.com:3128https_proxy=https://proxy.example.com:3128HTTP_PROXY=http://proxy.example.com:3128HTTPS_PROXY=https://proxy.example.com:3128NO_PROXY=localhost,172.16.0.0/12,192.168.0.0/16,fsioDocker proxy configuration
Docker Daemon
Create the docker daemon proxy configuration file.
sudo mkdir -p /etc/systemd/system/docker.service.dsudo touch /etc/systemd/system/docker.service.d/http-proxy.confUpdate the proxy settings similarly to the system-wide proxy configuration:
[Service]Environment="HTTP_PROXY=http://proxy.example.com:3128"Environment="HTTPS_PROXY=https://proxy.example.com:3128"Environment="NO_PROXY=localhost,172.16.0.0/12,192.168.0.0/16,fsio"Optionally, if the docker daemon is already installed on your system, restart it:
sudo systemctl daemon-reloadsudo service docker restartInstall Sandbox as described on the Installation page.
After Sandbox installation (optional)
Sandbox will use the system proxy settings from HTTP_PROXY and NO_PROXY environment variables if available and no other proxy settings are defined.
Optionally, add the proxy configuration to the fsTransform property file to override system proxy settings:
proxyHost=proxy.example.comproxyPort=3128proxyUser=optional_userproxyPassword=optional_passwordproxyType=HTTP