Local manager

Configuration Variable Data Type Description
proxy.config.lm.sem_id INT

Default: 11452

Specifies the semaphore ID for the local manager.

Note: Do not change the value of this variable.
proxy.local.cluster.type INT

Default: 3

Sets the clustering mode:

  • 2 = management-only mode
  • 3 = no clustering
proxy.config.cluster.rsport INT

Default: 8087

Specifies the reliable service port. The reliable service port is used to send configuration information between the nodes in a cluster. All nodes in a cluster must use the same reliable service port.

proxy.config.cluster.mcport INT

Default: 8088

Specifies the multicast port. The multicast port is used for node identification. All nodes in a cluster must use the same multicast port.

proxy.config.cluster.mc_ group_addr STRING

Default: 224.0.1.37

Specifies the multicast address for cluster communications. All nodes in a cluster must use the same multicast address.

proxy.config.cluster.mc_ttl INT

Default: 1

Specifies the multicast Time-To-Live for cluster communications.

proxy.config.cluster.log_ bogus_mc_msgs INT

Default: 1

Enables (1) or disables (0) logging of invalid multicast messages.

proxy.config.admin.html_ doc_root STRING

Default: ui

Specifies the document root for the Content Gateway manager.

proxy.config.admin.web_ interface_port INT

Default: 8081

Specifies the Content Gateway manager port.

proxy.config.admin. autoconf_port INT

Default: 8083

Specifies the autoconfiguration port.

proxy.config.admin. autoconf_port_timeout INT

Default: 5

Specifies a timeout, in seconds, for port 8083 when a connection has been established with that port but no data is sent.

Valid values are 1 - 300 seconds.

proxy.config.admin. overseer_port INT

Default: 0

Specifies the port used for retrieving and setting statistics and configuration variables. Java applets, which are not supported on all browsers, are required to display statistics.

This port is disabled by default.

proxy.config.admin.admin_ user STRING

Default: admin

Specifies the administrator ID that controls access to the Content Gateway manager.

proxy.config.admin. heartbeat_

port

INT

Default: 8079

Specifies the port used by the content_cop process to send heartbeat requests to Content Gateway manager for a system health check.

proxy.config.admin.admin_ password STRING

Default (none)

Specifies the encrypted administrator password that controls access to the Content Gateway manager. You cannot edit the password; however, you can specify a value of NULL to clear the password.

See Accessing the Content Gateway manager if you forget the master administrator password.

proxy.config.admin.use_ssl INT

Default: 1

Enables the Content Gateway manager SSL option for secure communication between a remote host and the Content Gateway manager.

proxy.config.admin.ssl_ cert_file STRING

Default: server.pem

Specifies the filename of the SSL certificate installed on the Content Gateway system for secure communication between a remote host and the Content Gateway manager.

Note that the contents of this file must not be password protected.

proxy.config.admin. number_config_bak INT

Default: 3

Specifies the maximum number of copies of rolled configuration files to keep.

proxy.config.admin.user_id STRING

Default: root

Specifies the non-privileged user account designated to Content Gateway.

proxy.config.admin.ui_ refresh_rate INT

Default: 30

Specifies the refresh rate for the display of statistics in the Monitor pages of the Content Gateway manager.

proxy.config.admin.log_ mgmt_access INT

Default: 0

Enables (1) or disables (0) logging of all Content Gateway manager transactions to the lm.log file.

proxy.config.admin.log_ resolve_hostname INT

Default: 1

When enabled (1), the hostname of the client connecting to the Content Gateway manager is recorded in the lm.log file.

When disabled (0), the IP address of the client connecting to the Content Gateway manager is recorded in the lm.log file.

proxy.config.admin. subscription STRING Default: NULL Not used.
proxy.config.admin. supported_cipher_list STRING

Default: AES128-SHA, DHE-RSA- AES128-SHA, DHE-DSS-AES128-SHA, DES-CBC3-SHA, EDH-RSA-DES-CBC3- SHA, EDH-DSS-DES-CBC3-SHA

A comma-separated list, no spaces, of ciphers supported by Content Gateway.

No validation is performed on the string.

proxy.config.lm.display_ reset_alarm INT

Default: 0

When enabled (1), email is sent to the administrator (proxy.config.alarm_email) whenever Content Gateway resets.

proxy.local.install.type INT

Default: 1

Indicates that Content Gateway is installed as a component of Forcepoint Web Security

(1) or Forcepoint DLP without Forcepoint Web Security (2)