Thank you Michael for your help and for the link. Kind Regards, Mauro
> On 12 Mar 2023, at 22:56, Saint Michael <[email protected]> wrote: > > Performance is poor at best. > Please check an identical arrangement at > https://1eye.us <https://1eye.us/> > And if the magazine uses Cloudflare, your proxy will be blocked. > I haven't been able to defeat Cloudflare. > > > On Sun, Mar 12, 2023 at 5:05 PM Payam Chychi <[email protected] > <mailto:[email protected]>> wrote: > Can’t comment on what’s best for your company. > > If you plan to do what you described, sounds like a reasonable plan, though > many others exist. > > You can do this using nginx + vouch to hook into an idp like Okta, and > introduce an identity layer into your connection to secure authentication and > authorization up. > > Ldap over internet is a horrible idea. > > Good luck, > Payam > > On Sun, Mar 12, 2023 at 12:43 PM Mauro Tridici <[email protected] > <mailto:[email protected]>> wrote: > > Dear users, > > I am a newbie and would like to know your opinion about a request I received > at work. > > I will try to describe the problem. > The company at which I work has several locations located within the same > country. The company has subscribed to an online magazine that can be > accessed after providing the public IP with which the various locations face > the public network. > > Instead of providing the various public IP addresses related to each of the > different locations, my boss proposed to set up a proxy server at the main > work location and ask all users in the company to use that proxy to reach the > magazine's site. > In this way, even company users working from home can reach the magazine's > website. > > Following are some questions: > > - In your opinion, is this a suggested or recommended solution? > - if such a solution falls within best practices, could you point me to some > links where examples of configurations are given? > - from the point of view of network security, it doesn't seem to me to be > very secure and I think that, for each of the users, we should create > credentials for access to the proxy server (e.g. through an integration with > the LDAP server), what do you think? > > I thank you in advance, > Mauro > _______________________________________________ > nginx mailing list > [email protected] <mailto:[email protected]> > https://mailman.nginx.org/mailman/listinfo/nginx > <https://mailman.nginx.org/mailman/listinfo/nginx> > -- > Payam Tarverdyan Chychi > _______________________________________________ > nginx mailing list > [email protected] <mailto:[email protected]> > https://mailman.nginx.org/mailman/listinfo/nginx > <https://mailman.nginx.org/mailman/listinfo/nginx> > _______________________________________________ > nginx mailing list > [email protected] > https://mailman.nginx.org/mailman/listinfo/nginx
_______________________________________________ nginx mailing list [email protected] https://mailman.nginx.org/mailman/listinfo/nginx
