Firewalls: Re: Re[2]: Cisco's PIX firewall

Firewalls
(November 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Re[2]: Cisco's PIX firewall
From:	"Craig I. Hagan" <hagan @ cih . com>
Date:	Wed, 27 Nov 1996 08:36:01 -0500 (EST)
To:	Chris Lonvick <clonvick @ cisco . com>
Cc:	"Michael H. Warfield" <mhw @ wittsend . com>, Mark_Plesser_at_NYRAPO @ pcmailgw . ml . com, zaka @ tiac . net, lazar @ netevolve . com, firewalls @ GreatCircle . COM
In-reply-to:	<2 . 2 . 32 . 19961127131059 . 0071a184 @ diablo . cisco . com>
Reply-to:	hagan @ cih . com

> Cut-through Proxies on the PIX appear to the user to work in a somewhat
> similar way.  When the PIX detects a new session starting of a protocol
> which is knows about, it will complete the session and ask for proper
> authentication.  The protocols which we currently support are telnet,
> ftp, and http.  So, as the same example, when you telnet to something on
> the Internet (unlike the typical proxy firewalls, you will use the IP
> address of the actual device you want to get to; not the address of the
> PIX), the PIX will get in the way of the session and ask for

I had always heard such described as "transparent proxying"

-- craig

-------------------------------------------------------------------------------
Craig I. Hagan     "It's a small world, but I wouldn't want to back it up"
hagan @
 cih .
 com	        "True hackers don't die, their ttl expires"

References:

Re: Re[2]: Cisco's PIX firewall
From: Chris Lonvick <clonvick @ cisco . com>

Indexed By Date	Previous:	RE: Looping TRACERT? - solved From: Russ <Russ . Cooper @ RC . on . ca>
Indexed By Date	Next:	Re: Firewall Training Courses From: "Gary O. Abrams" <gabrams @ geek . advsys . com>
Indexed By Thread	Previous:	Re: Re[2]: Cisco's PIX firewall From: Chris Lonvick <clonvick @ cisco . com>
Indexed By Thread	Next:	Re: Re[2]: Cisco's PIX firewall From: Matthew Howard <mhoward @ cisco . com>