: Assists organizations in complying with regulatory requirements regarding internet usage and data protection.

Web proxies can manage and optimize bandwidth usage. By caching frequently accessed content, they reduce the need for repeated requests to the original server, thereby conserving bandwidth and speeding up web access.

For users, a web proxy can also provide a level of anonymity on the internet by masking their IP addresses. However, in a corporate context, the focus is more on controlling and monitoring access rather than providing user anonymity.

At its core, the Globalscape Web Proxy is a reverse proxy component of the Globalscape EFT platform. It acts as a gatekeeper between external clients (web browsers, FTP clients, or REST API consumers) and your internal EFT server. When a user initiates a file transfer via HTTP, HTTPS, or FTP, they connect not to the internal server directly, but to the proxy. The proxy then inspects, validates, and relays the traffic to the hidden backend server.

Rather than waiting for a connection from the outside, the backend Globalscape EFT server establishes an outbound Peer Notification Channel (PNC) connection to the DMZ Gateway.

Regulatory frameworks require that sensitive data—be it patient records, payment card information, or personal user data—be protected both in transit and at rest. By terminating external TLS connections at the proxy and re-establishing a separate, controlled connection to the backend, the proxy ensures that external parties never directly touch the internal server. This separation is a key control in audit trails and compliance documentation.

) serves as a buffer. In a standard file transfer scenario, an external client attempting to upload sensitive financial or personal data would typically require an open inbound port through the corporate firewall. This creates a significant "attack surface." The Globalscape proxy mitigates this by residing in the Demilitarized Zone (DMZ). Instead of the external client connecting directly to the internal EFT server, it connects to the proxy. The internal server then establishes an outbound connection to the proxy to retrieve the data, ensuring that no inbound ports ever need to be opened on the internal firewall. Enhancing Security and Compliance The primary value proposition of the proxy is the enforcement of a "no data at rest" policy in the DMZ. Unlike traditional relay servers that might temporarily store files while they are being scanned or moved, Globalscape’s architecture is designed to pass data through in real-time. This is critical for organizations striving for compliance with stringent regulations such as