Forward and Reverse Proxies
A reverse proxy provides inline security between a cloud service (your organization’s instance or sanctioned cloud tenant of Office 365, as an example) and a user, incorporating a SAML (Security Assertion Markup Language) insertion like Okta (Identity-as-a-service or IDaaS) that verifies your identity and grants you access. Reverse Proxies are protecting sanctioned cloud tenants against unmanaged devices (personal phones, laptops, tablets), resulting in what is considered the “easiest” user experience.
A forward proxy works closer with the user, managing the traffic from an approved, managed device to cloud services by using either PAC Files, Agents, or some other configuration to send traffic to a location. Forward proxies inspect the cloud traffic for users and records various properties about requests, access attempts, and files accesses. It is the forward proxy that protects your managed, approved devices against unmanaged destinations.