[Nottingham] Tunneling question.

Michael Erskine msemtd at yahoo.co.uk
Thu Mar 23 15:48:05 GMT 2006

On Thursday 23 March 2006 15:30, Colin Saxton wrote:
> Just thought I would ask you guys this question...
> I have a setup with a DMZ area. In the DMZ area I have an application
> server that needs to communicate directly with a DB server behind the
> DMZ. I could open the port through the DMZ to the DB so that the
> application server can see it but I don't won't to do this directly.
> Is there any software out there that would do the following.
> 1. Open the port from the DB server through to the DMZ and connect to a
> ** waiting ** client proxy. I mean waiting because the client would not
> be able to connect through the firewall to the DB.
> 2. Once the client has a connection from the server then any clients
> running within the DMZ could connect to the client proxy and tunnel
> through to the server. Both the client/server proxy would use SSL
> I thought I would ask before are start coding something like this!

What's wrong with allowing a (secure) connection through the firewall from the 
application server to the DB server? Looks like you're making work for 
yourself in duplicating the job of the firewall.

Michael Erskine.

brain, v: [as in "to brain"]
	To rebuke bluntly, but not pointedly; to dispel a source
	of error in an opponent.
		-- Ambrose Bierce, "The Devil's Dictionary"

Yahoo! Photos – NEW, now offering a quality print service from just 8p a photo http://uk.photos.yahoo.com

More information about the Nottingham mailing list