Forward Proxy
What is Forward Proxy?
Forward ProxyA proxy configured on the client side that relays outbound requests to external services on the user's behalf.
A forward proxy stands in front of clients on a private network, accepting their outbound requests and forwarding them to destinations on the Internet. It hides client IP addresses, enforces egress policy, caches frequently fetched content, and inspects traffic for malware, data-loss, or policy violations. Clients are typically aware of the proxy and configured to use it through system settings, browser preferences, PAC files, or WPAD. Forward proxies are central to enterprise secure web gateways, school and library content filtering, and many anonymisation systems. With TLS interception they can also examine HTTPS, at the cost of needing a trusted internal certificate authority.
● Examples
- 01
A secure web gateway acting as a forward proxy that blocks gambling sites and scans downloads for malware.
- 02
A developer setting HTTPS_PROXY to route corporate traffic through an internal forward proxy.
● Frequently asked questions
What is Forward Proxy?
A proxy configured on the client side that relays outbound requests to external services on the user's behalf. It belongs to the Network Security category of cybersecurity.
What does Forward Proxy mean?
A proxy configured on the client side that relays outbound requests to external services on the user's behalf.
How do you defend against Forward Proxy?
Defences for Forward Proxy typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for Forward Proxy?
Common alternative names include: Egress proxy, Client-side proxy.