Firewalls: Re: http proxy on firewall (fwd)

Firewalls
(April 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: http proxy on firewall (fwd)
From:	tom @ pserv1 . dot . state . az . us (Tom Brink)
Date:	Wed, 5 Apr 95 20:56:16 MST
To:	firewalls%greatcircle . com @ janus . dot . state . az . us (Firewalls)
Reply-to:	tom @ pserv1 . dot . state . az . us

Bryan D. Boyle writes:
> Date: Wed, 5 Apr 1995 22:16:00 -0400 (EDT)
> From: "Bryan D. Boyle" <bdboyle @
 maverick .
 erenj .
 com>
> Subject: Re: http proxy on firewall
> To: "Jon E. Price" <jon @
 nytimes .
 com>
> 
> Why not run the proxy on the wall?
> 
> 1) most proxies have holes large enough for your delivery trucks to drive 
> through in terms of access privs, etc. etc.  Do you want large, monolithic
> programs running on the firewall?  No.

I agree if you are talking about an http proxy such as NCSA's.  However, I
do believe you can run a http proxy 'safely' if it is of the TIS fwtk
variety (small, compact, easy to configure, and best of all, source
code).

> 2) processor gets eaten up by the proxy server.  big, complex program=
> big, complex cpu usage.

See above.
-- 
Tom Brink tom @
 dot .
 state .
 az .
 us
Technical Support Specialist
Technical Research Center
Information Services Group
Arizona Department of Transportation

Indexed By Date	Previous:	downloading From: "R.S." <rainas @ efn . org>
Indexed By Date	Next:	Looping mail from Bill Fletcher <billf @ efn . org> From: mcb @ GreatCircle . COM (Michael C. Berch)
Indexed By Thread	Previous:	downloading From: "R.S." <rainas @ efn . org>
Indexed By Thread	Next:	Looping mail from Bill Fletcher <billf @ efn . org> From: mcb @ GreatCircle . COM (Michael C. Berch)