If you want to isolate proxy servers with firewalls, place them in a cell that is separate from the applications and configure the core group bridge service.
Why and when to perform this task
You can configure the proxy server to route requests to applications that are hosted in other cells. The core group bridge service provides communication between a cell with a proxy server and a cell with a target application. Once the cells are linked with core group bridges, the proxy server will be able to route to the application without additional configuration. You can find core group bridge settings by clicking Servers > Core groups > Core group bridge settings in the administrative console.The basic steps to configure cross-cell routing are configuring and enabling core group bridges in the cell that the proxy server belongs to, and in each of the other cells that are being routed to. The core group bridges need to be configured with the same access point group name.
Steps for this task
What to do next
If security is enabled, it must be enabled in all cells for the core group bridge service.Related information
Configuring the core group bridge between core groups that are in different
cells