AW: Firewall-Problem

From: Haag, Elmar <haag@dont-contact.us>
Date: Wed, 12 Apr 2000 15:39:49 +0200

Never use a WWW-proxy or any other applications directly on a firewall
system. It is against all security rules. Place the proxy on a seperate
machine into a DMZ. Establish a proxy chain (next_proxy) from internal
caching-Proxy to DMZ proxy.

Greetings,

Elmar

> -----Ursprüngliche Nachricht-----
> Von: Heinz Ahrens [mailto:xf01070@gmx.de]
> Gesendet: Mittwoch, 12. April 2000 15:33
> An: squid-users@ircache.net
> Betreff: Firewall-Problem
>
>
> Hallo Squid-Users,
>
> i use Squid on a firewall, works fine.
> Now i want to use squid on an intern-proxy-cache in my LAN over phttpd
> (FW-Software from IBM)
>
> That works fine, too. But my firewall is slow and there are too many
> users.
>
> The problem is phttpd. Sometimes there is no connections from my
> intern-squid-cache to:
>
> telnet firewall 8080
>
>
> (i modified the 4 parameters with no success)
>
>
> What can i do:
>
> 1. Use another version of phttpd ?
> 2. Use SOCKS ?
> 3. Use NAT ?
> 4. Use extern IPs in my LAN ?
> 5. Squid on the Firewall without caching (what about performance)
> 6. Squid in my DMZ over squid-gw
> 7. something else
>
> Isnt there someone who has got the same configuration. A
> small firewall
> and too many users.
>
>
> Greeting
>
> Heinz Ahrens
>
>
>
>
> --
>
>
>
> Sent through GMX FreeMail - http://www.gmx.net
>
Received on Wed Apr 12 2000 - 07:44:17 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:52:55 MST