Re: Bodermanager vs Blackhole firewall...

Joseph S D Yao (jsdycospo.osis.gov)
Mon, 30 Nov 1998 14:39:27 -0500 (EST)

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: Rick Murphy: "Re: POP3 Security Issues"
• Previous message: David Lang: "Re: POP3 Security Issues"

> Don , your question is whether to use a proxy or not
> for a particular application. and if not use the
> proxy then what ? do we NAT ?
>
...
> second a proxy does not allow any direct connection
> between the two parties ie the the two ends say a
> ftp client inside the trusted network and a FTP
> server on the Internet. The proxy examines all the
> connections between the two ends. All the outgoing
> packets get the IP address of the proxy and all the
> incoming packets are neatly sent to the client on
> the internal network.

Thereby, a "network address translation" by default occurs. The IP
address at which the proxy is addressed by the outside world is
different from the IP address at which the client itself is addressed.

--
Joe Yao				jsdycospo.osis.gov - Joseph S. D. Yao
COSPO/OSIS Computer Support					EMT-A/B
-----------------------------------------------------------------------
	PLEASE ... send or Cc: all "COSPO/OSIS Computer Support"
		     mail to sys-admcospo.osis.gov
-----------------------------------------------------------------------
This message is not an official statement of COSPO policies.

• Next message: Rick Murphy: "Re: POP3 Security Issues"
• Previous message: David Lang: "Re: POP3 Security Issues"

This archive was generated by hypermail 2.0b3 on Sat Jul 17 1999 - 07:12:09 CDT