MWG is currently installed on a virtual machine that is not inline in the network topology. I need to direct the traffic of a guest network completely separate so that it filters the traffic. The possibility of placing a MWG interface as the gateway of the guest network was raised. Could you tell me if this configuration would work? And if so, how would it handle non-proxy protocols such as DNS?
Thank you very much in advance.
This would indeed work. MWG could be setup in some transparent mode (router, wccp, layer 2). The traffic would then be redirected to MWG and it would filter it like you do any other traffic.
As far as non-HTTP traffic like DNS, that traffic could just pass through MWG on the way to it's original destination (like the DNS server).
This is pretty common to have MWG setup in transparent router mode, then setting it as a default gateway (in some way shape or form).