ICAP
The Internet Content Adaptation Protocol (ICAP) is a lightweight HTTP-like protocol (request and response protocol), which is used to extend transparent proxy servers. This frees up resources and standardizes the way in which new features are implemented. ICAP is usually used to implement virus scanning and content filters in transparent HTTP proxy caches.
The ICAP allows ICAP Clients to pass HTTP / HTTPS messages to ICAP Servers for content adaptation. The ICAP Server executes its transformation service on these HTTP / HTTPS messages and sends responses to the ICAP Client, usually with modified HTTP / HTTPS messages. The adapted HTTP / HTTPS messages can be HTTP / HTTPS requests, or HTTP / HTTPS responses.
You can configure a Check Point Security Gateway
Dedicated Check Point server that runs Check Point software to inspect traffic and enforce Security Policies for connected network resources. / ClusterXL as:
-
ICAP Client - To send the HTTP / HTTPS messages to ICAP Servers for content adaptation.
-
ICAP Server - To perform content adaptation in the HTTP / HTTPS messages received from ICAP Clients.
-
Both ICAP Client and ICAP Server at the same time.
You can configure a Check Point Scalable Platform Security Group as:
-
ICAP Client - To send the HTTP / HTTPS messages to ICAP Servers for content adaptation.
Note - Scalable Platforms do not support ICAP Server is not supported (Known Limitation MBS-4094).
Check Point Security Gateway / ClusterXL / Scalable Platform Security Group configured for ICAP can work with third party ICAP devices without changing the network topology.
For more information, see the R81 Threat Prevention Administration Guide.