Cloudmersive Reverse Proxy Server can be used to protect Salesforce Sites. This article documents recommended best practices for such configurations:

1. Add a Transform Redirect policy. Set the Match Host to the fully-qualified domain name (FQDN) of your salesforce site, e.g. mysite.my.site.com. Set the New Host property to the fully-qualified domain name (FQDN) of your Cloudmersive Reverse Proxy Server or Managed Instance.

2. Add a Response Content Replace policy. Under Target Content to Match, set the fully-qualified domain name (FQDN) of your salesforce site, e.g. msite.my.site.com. Set the Replacement Content to the fully-qualified domain name (FQDN) of your Cloudmersive Reverse Proxy Server or Managed Instance.

3. Configure Site Level Settings and enable the option to Remove Cookie Domains (if set). Also enable these checkboxes:

• Disable X-Forwarded-For Header
• Disable X-Forwarded-Host Header
• Disable X-Forwarded-Proto Header

4. Add a Response Content Replace policy. Under Target Content to Match, set test.salesforce.com. Set the Replacement Content to the fully-qualified domain name (FQDN) of your Cloudmersive Reverse Proxy Server or Managed Instance.

These policies server to ensure that redirects and forms do not go to the original site.com domain, but instead go to the Cloudmersive Reverse Proxy Server.