Overview

UDMG Secure Proxy (USP) is an advanced reverse-proxy solution designed to work alongside Stonebranch's Universal Data Mover Gateway (UDMG), a powerful Managed File Transfer (MFT) platform. USP enables external partners to initiate secure file transfers into your internal network, without exposing internal systems directly or requiring any inbound firewall openings.

This architecture is tailored for security-sensitive environments where hosting UDMG in a demilitarized zone (DMZ) is not permitted.

USP Key Features

• Reverse Proxy for Secure File Transfers
  USP sits in front of internal systems and brokers all file transfer traffic, acting as an intermediary between external users and UDMG.
• Flexible Connection Modes
  USP supports two Connection Modes: Session Break, which terminates and authenticates inbound connections in the DMZ before establishing a new outbound connection to the LAN target; and Direct Mode, which proxies inbound TCP connections directly to the configured target without session termination or proxy-level authentication.
• No Inbound Firewall Rules
  Traffic from the DMZ to the LAN can be initiated by the LAN-hosted USP Client and forwarded over a secure tunnel, maintaining a strict one-way network flow that eliminates exposure, and removing the need to allow traffic from the DMZ into the LAN.
• Multiple Authentication Mechanisms
  USP supports a flexible authentication architecture using LDAP, Account Repositories, or pass-through credentials from the inbound connection.