On 18 Feb 00, at 10:12, Sandeep Shetty wrote (again):
> What is a Proxy server?
A "proxy" acts on behalf of another. A proxy server receives (and
responds to) requests intended for some other machine(s); it may or
may not re-issue the requests to the real server in order to obtain
the response to be returned.
This is useful in a couple of ways. The proxy may provide caching,
reducing load on the actual server (or on bandwidth between the proxy
and the server). It may combine responses obtained from different
servers. It may provide a way to query a server to which no direct
connection is available; with the addition of policies as to *which*
requests will be forwarded, this becomes a pretty effective security
barrier.
> Whats a firewall?
A firewall is a network box that restricts the flow of traffic
across some network boundary according to some policy. Proxying is a
common and effective mechanism used by some firewalls; there are
other mechanisms available.
> How does it works.
A typical (simplified) firewall has two ports and is installed like
a router, as the gateway between two subnets. A database of
rules/policies tells it which traffic to allow, and which to block.
> Why firewalls are used for security?
The ruleset configured on a firewall shuld reflect a site's
security policy. That's what it's for. (Maybe I don't understand
this question?)
> there any other means other than firewalls to protect a Proxy
> Server.
A proxy server may be a firewall protecting a "real" server; it
shouldn't generally require much protection itself.
>
>
>
> #########################################################################
> _ _ _ _
> | | | | __ ___ _____ __ _ _ __ (_) ___ ___ __| | __ _ _ _
> | |_| |/ _` \ \ / / _ \ / _` | | '_ \| |/ __/ _ \ / _` |/ _` | | | |
> | _ | (_| |\ V / __/ | (_| | | | | | | (_| __/ | (_| | (_| | |_| |
> |_| |_|__,_| _/ ___| __,_| |_| |_|_|______| __,_|__,_|__, |
> |_|
> #########################################################################
>
>
>
>
> With lots of luv,
> Sandeep Shetty
>
>
>
>
>
Internet convention is that more than 4 lines of signature is
probably escessive.
David G
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]