As the digitalization of enterprises and the expansion of Internet services continue,the demand for secure and efficient access to Internet services by internal systems has grown significantly.In contrast to directly granting Internet access permissions to internal servers,forward proxy systems offer enhanced security and management capabilities.Nevertheless,the widespread adoption of HTTPS in online services,coupled with the lack of server certificates,poses substantial challenges in designing forward proxy systems.In response to these challenges,this study presents the design and implementation of an HTTPS forward proxy system based on the open-source software Nginx.The proposed system enables efficient traffic forwarding without necessitating server certificates,while incorporating features such as HTTPS domain port reuse,domain-level whitelisting,and source IP address access control.Consequently,this solution provides a secure and comprehensive approach for enterprise internal systems to access Internet-based HTTPS services.
NETL
NSTL
万方数据
