Internet connection

MetaDefender ICAP Server requires internet connection for online license activation.

For ICAP version v5.5.1and newer

Since MetaDefender ICAP Server v5.5.1, proxy configuration is possible via management console UI, and with proxy authentication support. MetaDefender ICAP erver no longer relies on system configurations to obtain the proxy setting, but it will control the thing itself.

Select "custom Configuration" to setup the proxy

Proxy Server Configuration

PropertiesDescriptionOption
SERVERProxy server host addressIP address / Domain all accepted
PORTProxy server portSome default common ports: 3128 (Squid), 49152 (ProxySG)

Proxy User Authentication

PropertiesOption
USERNAMEUsername for proxy authentication
PASSWORDPassword for proxy authentication

Exclusion List

Define a list of destination addresses to be excluded from going through pre-configured proxy server (use semicolons ; to separate entries).

Applied to connections triggered by MetaDefender ICAP Server for following activities:

  • User MD Cloud as backend for scanning
  • Scan by Metadefender Core
  • License Handling
  • Connect to OPSWAT Central Management
  • Single Sign On integration (Fetch metadata from URL and login)

Supported formats:

  • Lowercase-only

  • IP range (CIDR notation). For example: 192.168.203.1/16

  • Valid IP address or host name. Wildcard character * is supported as prefix and/or suffix.

    • For example: 192.168.; *.opswat.

For ICAP version lower than v5.5.1

Proxy configuration

Linux

Set variable https_proxy in file /etc/default/mdicapsrv.

Windows

From version v5.2.0

    1. Press Windows + R to open the Windows Run prompt
    1. Type in sysdm.cpl and click OK.
    1. Open the Advanced tab and click on the Environment Variables button in the System Properties window.
    1. Add the new System variable
    1. Input your proxy address and save

For older than v5.2.0

Under Windows use the netsh tool to set the proxy, e.g.: netsh winhttp set proxy <ADDRESS>

In some cases setting the proxy with netsh is not sufficient. In that case set the proxy by starting Internet Explorer with SYSTEM rights and configure the proxy in the settings. To do this please follow this article.

You might need to configure Windows proxy to bypass local addresses if you can't access Web Management Console from the host itself. Consult netsh documentation for additional configuration options.

No Proxy configuration

To avoid traffic between MD ICAP Server and MD Core go through proxy by setting on Proxy configuration, set no_proxy variable in file /etc/default/mdicapsrv

For example: MD ICAP Server under proxy setting want to connect o 2 MD Core servers with domain https: //local.core. awesomecompany .net:8008 and IP address: http://10.40.50.111:8008 then domain https: //local.core. awesomecompany .net:8008 and http://10.40.50.111:8008 should be set to variable no_proxy as below:

Linux

/etc/default/mdicapsrv
Copy

From MD ICAP Server 5.1.0 the cidr must be set with IP Address (10.40.50.111/32), with older version do not need follow cidr

E.g for older version than MD ICAP Server v5.1.0

no_proxy=10.40.50.111,.core.awesomecompany.net

###

Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard
  Last updated on Jun 27, 2025
Next to read:
Other settings
On This Page
Internet connectionFor ICAP version v5.5.1and newerProxy Server ConfigurationProxy User AuthenticationExclusion ListFor ICAP version lower than v5.5.1Proxy configurationLinuxWindowsNo Proxy configurationLinux