Migrating from NetCache to Blue Coat
June 30, 2022Many of these steps can be incorporated into converting any type proxy and transferring the data to Blue Coat proxy but this document is specifically for migrating NetCache proxy to Blue Coat proxy.
Set up Blue Coat proxy:
- If this proxy is not brand new it is recommend to wipe the current configurations and restore the factory settings.
- Proceed to setup the proxy according to Corporate’s “Blue Coat Proxy SG Standards Architecture and Controls.”
Convert Forwarding and Rules from NetCache to Blue Coat proxy:
Blue Coat Forwarding:
- NetCache has two files that will make up the Forwarding Host and Layer.
- These files are DNS (Domain Name System) and NPT (Network Protocol Tunneling). The files are located under:
- DNS – Setup tab/DNS/General
- NPT – Setup tab/Network/Protocol Tunneling
Once this information is gathered do the following:
Create a Forwarding Host file for the Blue Coat.
- Convert the DNS and NPT files separately and then combine them to create the Forwarding Host file.
- After the file is created, install the file into Blue Coat under Configuration tab / Forwarding / Forwarding Hosts / Install Forwarding File tab.
Example of converting NPT file
NetCache NPT look –
IP_Address 7001 IP_Address 80
Blue Coat example –
Create host “IP_Address_80” IP_Address tcp=80 ssl-verify-server=no server
Note: Remember that the NetCache NPT is set up as:
(NetCache IP)(NetCache port)(customer IP)(customer Port).
- It translates as; anything from the notated customer IP using the specific customer port can tunnel through the NetCache using the NetCache port assigned.
- This converts to the Blue Coat by saying the “alias name” which points to the customer IP with the specified customer port can forward through Blue Coat.
Example of converting DNS file:
NetCache DNS look –
IP_Address awddatacenter
IP_Address issppartner.clarkeamerican.com issppartner.bankofamerica.com
Blue Coat example –
create host “awddatacenter” IP_Address tcp=443 ssl-verify-server=no server
create host “issppartner” IP_Address tcp=443 ssl-verify-server=no server
The above is just an example but take note that the second NetCache example has two URLs.
Remember that the name placed in the quotations is just an alias for the Forwarding Host file that you import into Blue Coat.
Both full URLs will be placed in the in the Forwarding Layer of the VPM or the Forwarding File, whichever way is chosen for that specific proxy.
Create a Forwarding layer onto the VPM or a Forward file for the Blue Coat.
Revisit the DNS file pulled from the NetCache and the NPT part of the converted forwarding host file.
- Create the Forwarding layer or Forward file from these files.
- Remember to use ALL URLs in the DNS file.