Load balancing McAfee Web Gateway
About McAfee Web Gateway
McAfee Web Gateway analyzes the nature and intent of all content and code entering the network from requested web pages, providing immediate protection against malware and other hidden threats. Powered by layered security that combines local and cloud-based protection, you can count on Web Gateway for instant, advanced protection to stop zero-day threats, spyware, and targeted attacks — without a signature. Learn more about Web Gateway’s latest threat protection enhancements that provide state-of-the-art behavior-based emulation and detection techniques.
Key benefits of load balancing
Implementing Loadbalancer.org appliances enables multiple McAfee Web Gateway to be deployed in a cluster. This provides the following key benefits:
- High-availability – if a Web Gateway fails, service is not interrupted
- Maintenance – Web Gateways can easily be taken out of the cluster for maintenance
- Performance – for additional performance simply add more Web Gateways to the cluster
How to load balance McAfee Web Gateway
We recommend deploying in Layer 4 DR Mode – Direct Server Return Mode (Recommended) In this mode, traffic from the client to the Web Gateway passes via the load balancer, return traffic passes directly back to the client which maximizes performance. Direct routing works by changing the destination MAC address of the incoming packet on the fly which is very fast. This mode is transparent by default meaning that the Web Gateway sees the real client IP address and not the IP address of the load balancer. Due to its speed, overall simplicity and effectiveness, Direct Routing (DR) mode with source IP persistence is our recommended method and can be used in both Explicit Proxy Mode & Transparent Routed Proxy Mode.
For more information about how to deploy McAfee Web Gateway read our deployment guide below.