Reverse Proxy Service Object (Ingress)

Ingress Service Objects are used in the Ingress/ReverseProxy rules. The object defines a listener port that the Multicloud Defense gateway listens for the traffic it receives and forwards to the target/backend address. Listener port can be configured with a decryption profile that has a TLS certificate configured. When the traffic hits the listener port, the Multicloud Defense Gateway returns the TLS certificate configured.

An SNI can be configured on this port. This enables a single listener port (e.g 443) to be proxied to multiple backend targets based on the SNI.

L7 DoS (L7 Denial of Service) can be configured on the service to set rate limits for an URI and/or HTTP method.

Target defines the backend address object and port to forward the traffic. The proxied traffic can be forwarded as HTTP, HTTPS, TCP or TLS.