[Nottingham] Tunneling question.
Michael Erskine
msemtd at yahoo.co.uk
Thu Mar 23 15:48:05 GMT 2006
On Thursday 23 March 2006 15:30, Colin Saxton wrote:
> Just thought I would ask you guys this question...
>
> I have a setup with a DMZ area. In the DMZ area I have an application
> server that needs to communicate directly with a DB server behind the
> DMZ. I could open the port through the DMZ to the DB so that the
> application server can see it but I don't won't to do this directly.
>
> Is there any software out there that would do the following.
>
> 1. Open the port from the DB server through to the DMZ and connect to a
> ** waiting ** client proxy. I mean waiting because the client would not
> be able to connect through the firewall to the DB.
>
> 2. Once the client has a connection from the server then any clients
> running within the DMZ could connect to the client proxy and tunnel
> through to the server. Both the client/server proxy would use SSL
>
> I thought I would ask before are start coding something like this!
What's wrong with allowing a (secure) connection through the firewall from the
application server to the DB server? Looks like you're making work for
yourself in duplicating the job of the firewall.
Regards,
Michael Erskine.
--
brain, v: [as in "to brain"]
To rebuke bluntly, but not pointedly; to dispel a source
of error in an opponent.
-- Ambrose Bierce, "The Devil's Dictionary"
___________________________________________________________
Yahoo! Photos – NEW, now offering a quality print service from just 8p a photo http://uk.photos.yahoo.com
More information about the Nottingham
mailing list