Evaluate proxy by port versus proxy by hostname
OCLC ended support for EZproxy’s proxy by port option on 30 September 2020, due to its incompatibility with many popular e-resource websites.
If you are running proxy by port after 30 September 2020, you will need to enable Proxy by Hostname in order to receive support from OCLC. Proxy by hostname will help ensure seamless access for your library’s e-resource subscriptions. For more information, please see migrating to Proxy by Hostname or contact OCLC Support.
The following table details the differences between these two methods to help institutions decide which is most appropriate for their configuration.
|Proxy by port||Proxy by hostname|
|Port usage||One port required for login processing. Variable number of additional ports required for proxying, with one port required for each remote web server that is being proxied.||One port for http is required. One additional port is required to use https. One additional port may be required during transition (e.g., if moving from port 2048 to port 80 in URLs, both may need to be enabled).|
|DNS configuration||A single DNS entry is required for the name of the server.||Two DNS entries are required: one for the base name of the server (e.g., ezproxy.yourlib.org) and one wildcard form of the base name (e.g., *.ezproxy.yourlib.org).|
|Local firewall configuration||A variable number of ports must be configured to allow incoming access to the EZproxy server. If EZproxy tries to use ports beyond those authorized in the firewall, remote users will receive page not found errors.||One to three predefined ports must be authorized in the firewall.|
|Remote firewall access||Proxy by port always uses non-standard ports. Access to web servers on non-standard ports may be blocked at the remote user's site. This can block access from corporate or military sites.||When proxy by hostname is configured to use port 80 for http and port 443 for https, EZproxy appears like a normal web server, avoiding most remote firewall blocks. Using proxy by hostname on others ports may still trigger blocks from remote firewalls.|
|SSL certificate||Standard certificate required to avoid browser warnings.||Wildcard certificate required to avoid browser warnings. See SSL Certificate Options for details.|
|Rewritten URL examples|
** The first rewritten URL example for proxy by hostname show the URL form if EZproxy uses port 80, in which case no port is required. The other two examples where another port, such as 8080 is used.
The ideal configuration for EZproxy is proxy by hostname using port 80 for http and port 443 for https. For more information on moving from proxy by port to proxy by hostname, see Migrate to Proxy by Hostname.