Proxy Usage

We recommend using a transparent proxy! A transparent proxy can hide its settings, hence it is safer and requires no additional configuration on the target machine.

If your proxy setup breaks SSL connections (end-to-end encryption for HTTPS), then the Sandbox installation will NOT succeed, and you should perform an Offline Installation instead!

This feature is available from Sandbox version 1.9.3

Proxy server configuration

The following URLs are recommended to bypass on the proxy server:

Sandbox server configuration

The following configuration is necessary for the installer and the product to work properly behind a non-transparent HTTP proxy.

Before Sandbox installation

Set the following configuration settings before installation.

These settings are only used during the installation process to prepare the environment for the Sandbox service!

If the proxy settings are changed after the installation, please apply the changes mentioned in the next section OR repeat the installation process to make sure that the Sandbox service uses the updated configuration!

System-wide proxy configuration

Update the /etc/environment config, copy the proxy variables to the end of the file as described below. This will be used by tools like WGET, CURL, APT.

Always set the NO_PROXY variable to precisely match the example below. The IP address ranges: 172.16.0.0/12 and 192.168.0.0/16 are used by Docker, do not reuse them for other purposes.

Please use your own proxy URL instead of the example proxy.example.com:3128.

The proxy format is <protocol>://<user>:<password>@<domain or IP address>:<port> where <user> and <password> are URL encoded strings.
/etc/environment
Copy

Once the file is updated log out and log in again for these changes to take effect:

Bash
Copy

Docker proxy configuration

Create the docker daemon proxy configuration file.

http-proxy.conf
Copy

Update the proxy settings similarly to the system-wide proxy configuration:

http-proxy.conf
Copy

Optionally, if the docker daemon is already installed on your system, restart it:

Bash
Copy

Install Sandbox as described on the Installation page.

Online license activation is not working when a proxy is used!

Please follow the "Offline license activation" section of the License Activation page.

Proxy configuration change after Sandbox installation (optional)

Sandbox components will use the proxy settings stored in /home/sandbox/.docker/config.json (this file is created/updated by the Sandbox installer).

It is possible to change the proxy configuration used by Sandbox components (Docker containers) without reinstalling Sandbox. If your proxy configuration changed, please modify the settings in /home/sandbox/.docker/config.json (the path may differ if you installed Sandbox under a different user):

/home/sandbox/.docker/config.json
Copy

Then please restart the sandbox service to remove and restart all Docker containers:

Bash
Copy

You can check the currently used proxy configuration for a given Docker container, e.g. for transform :

Bash
Copy

This is the expected output:

Bash
Copy
Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard
Next to read:
Air-gapped Systems

See the "Technical Datasheet" for a complete list of features: https://docs.opswat.com/filescan/datasheet/technical-datasheet

On This Page
Proxy UsageProxy server configurationSandbox server configurationBefore Sandbox installationSystem-wide proxy configurationDocker proxy configurationProxy configuration change after Sandbox installation (optional)