> I am using gsp & jdbc with jserv and things seem to be working beautifully.
> However, in the fielded system I will have to be working across a firewall.
> I am using oracle with jdbc thin clients. This is implemented by oracle in
> something they call sql net. The protocol it uses is such that when you
> wish to make a database connection, you connect to a given port and then
> oracle dynamcally creates a new port for you to connect to. A firewall that
> allowed you to connect to random ports would not be much of a firewall.
>
> Let Ax be the machine running apache, and Dx be the machine running my
> oracle database. Ideally, Dx has no ports available to Ax. Dx is always a
> client to Ax.
>
> Does anyone know of a proxy? Or some other work-around?
In reality, you should have both Ax and Dx behind the same firewall and then
only allow connections to Ax on the port that apache is listening to.
Anything else isn't secure and thus you might as well not have the firewall.
I won't even go into what I think about firewalls. <smile>
If you say that the location of Ax is out of your control, then it sounds
like you are pretty much screwed (short of finding an OCI proxy...good luck)
and the people running your security don't know what they are doing if they
won't let you move the machines.
Also, for performance reasons, you wouldn't want your database connection
going through a firewall.
p.s. this message is offtopic. it should have been posted to the
[EMAIL PROTECTED] mailing list instead.
-jon
----------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives and Other: <http://www.working-dogs.com/>
Problems?: [EMAIL PROTECTED]
