On Sat, 23 Nov 1996, Don Pollock - Omnes - Engineering wrote:
> Another thing: Put the proxies on your web server, *not* on the firewall.
> It makes the firewall harder to crack, and improves its performance.
Yes, absolutely the best solution....
>
> Unrelated Question: What does your ISP think of connecting to a Solaris/NT/HPUX box instead of to a router? Do they care? Is your FW-1 box talking PPP to them?
>
> I'd have thought they'd prefer to talk to a router, like this:
>
> {Internet}--[ISP]-[router]--[Firewall-1]--[internal net]
> |
> [WWW server]
>
> This way, the FW-1 box wouldn't need any serial interfaces....
> or are you using a cablemodem?
>
My experiences on doing Serial communications on a Solaris box have been
atrocious (like my spelling). If at all possible let a router handle that
work as it is designed for it. Putting a serial card in a Solaris box
has resulted in horrible performance, slow-downs - lowsy performance.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Daniel Blander =8^)
Sr. Systems Engineer Applied Computer Solutions
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Phone: (714) 842.7800 Fax: (714) 842.8299
Email: Daniel .
Blander @
acsacs .
com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
The Official Applied Computer Solutions Home Page
and Tech Tip of the Week:
http://www.acsacs.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Follow-Ups:
-
Re: DMZ
From: R <rtadams @
texas .
net>
References:
-
Re: DMZ
From: Don Pollock - Omnes - Engineering <pollock @
houston .
omnes .
net>
|
|
