Good point Felix, NTP is a bad example.
However in transparent deployments we would simply pass it, so it should work. In explicit mode this won´t work.
Looks like the only way to achieve this is via the use of iptables. Has anyone else set up iptables on these boxes, it appears the standard iptables file that is generated which includes the rules (/etc/sysconfig/iptables) is removed on reboot (??)...
That will only be valid in transparent deployments :-)
When using MWG as an expplicit proxy we won´t forward other protocols at all. If you want to forward NTP for example (e.g. point your Clients to MWG as an NTP server) you probably have to setup a port forwarding rule to open the specific port on MWG and forward it to the approrpiate destination server.