>
> Dual homed architecutre: Users have to log in.
>
> Proxy services: Users don't have to log in. Recommended over dual homed.
>
> Also I don't understand this sentance "The proxy server runs on the dual
> homed host."
>
> If this is true, then dual homed host run proxy server program and also
> bastion host can run proxy service program?
>
Hi,
I am a newer of the firewall too,I am here not aimed to answer
your question,I just want more people taking part in the discussion
for the newer.
There is no relation between dual homed host and proxy server.
dual homed host have two network interface(or so),and networked on
two side.they may provide security machenism,and they can be used
as proxy server,for example mail relay.
proxy server is defined from function.usually they give some
authentication and logs,then if permitted ,the access request
will be relayed to the inside real server. but they do not need
to run on dual homed host.
so I think the answer for your last question is YES.
we can give the model for the two.
proxyserver
---------- |
-------- ------ |FIREWALL| |
| INSIDE |---|router|----| system| --------------router---outside
--------- ------ ----------
------- -----
| |
| |
-------------
| proxyserver|
-------------
I do not know if all proxyservers above is called basition.
what I said is just waht I think.wellcome to discuss.
--Duan Zhenhai
References:
|
|
