Controls Web Proxy

The Controls Web Proxy works by setting up an SSH tunnel through one of the gateway nodes, outland.fnal.gov or outback.fnal.gov. The user's web browser is configured to access control system web servers through the SSH tunnel.

The Controls Web Proxy should work with any web browser on any platform with an SSH client. It has been tested with Firefox and Internet Explorer on Microsoft Windows, Safari and Firefox on Mac, and Firefox on Scientific Linux Fermi.

Step 1: Configure Your Web Browser

Firefox

• Go to Tools->Options...->Advanced->Network
• Click the Settings... button.
• Select Automitic proxy configuration URL:
• Enter http://www-ad.fnal.gov/controls/proxy.pac
• Click Reload, OK, OK
• In the address bar, type about:config
• Scroll down to network.proxy.failover_timeout
• Right click and select Modify
• Change the value to 60.

Internet Explorer

• Go to Tools->Internet Options...->Connections
• Click the LAN Settings... button.
• Check the Use automatic configuration script box.
• Enter http://www-ad.fnal.gov/controls/proxy.pac in the Address box
• Click OK, OK

Safari

• Go to Safari->Preferences...->Advanced
• Click the Proxies: Change Settings... button.
• Click the lock and enter your password.
• Check the Automatic Proxy Configuration box.
• Enter http://www-ad.fnal.gov/controls/proxy.pac in the Proxy Configuration File box.
• Click the Apply Now button.

The Automatic Proxy Configuration file directs web requests as follows:

If your computer is at Fermilab, requests to web servers inside the controls firewall use the Controls Web Proxy. All other requests use direct access.

If your computer is not at Fermilab, all requests to web servers inside the controls firewall use the Controls Web Proxy. Requests to other .fnal.gov servers use the proxy, but failover to direct access if the proxy is not active. All other requests use direct access.

Step 2: Open the SSH Tunnel

Windows With Exceed