Security Basics mailing list archives
RE: Web logging
From: Omar Salvador Alcalá Ruiz <oalcala () scitum com mx>
Date: Mon, 15 Nov 2004 12:38:15 -0600
Well, with a transparent proxy yo may not suffer at all. An explicit proxy makes it hard to overcome when the proxy dies, since all your hosts are pointing to the proxy (here the explicit name), unless you manage many proxies by HSRP. With a transparent one, you rely on a Layer 3 switch or a router, where you redirect all your proxied traffic to your proxy. The client doesnt notice that, and with a simple ACL you can redirect all the desired traffic to and from the proxy (here the transparent name). If you have a firewall restricting all internet access to everything but your proxy, you may want to have an "panic" disabled rule in case an emergency occurs. If you use solutions like Blue Coat, you may have failover. HSRP will also do, if you don't have problems by having two or proxies instead of one. Hope this help OA -----Original Message----- From: Stephane Auger To: security-basics () securityfocus com Sent: 14/11/2004 09:44 a.m. Subject: Web logging Hey guys, First off I want to thank all of you for your input on my Web logging issue, I've been looking in many different solutions since. Now, here's a second question that's a follow-up on the first one... a lot of you told me to use a proxy, or proxy-like server on the network. Only issue is, doesn't that create a single point of failure? If that machine dies, nobody will be able to access the net. How would you address this issue? Thanks again for your input! Stephane Auger
Current thread:
- Web logging Stephane Auger (Nov 12)
- Re: Web logging Anthony J. Cogan (Nov 15)
- Re: Web logging Josh Nerius (Nov 15)
- Re: Web logging Ted Percival (Nov 15)
- Re: Web logging K. K. Mookhey (Nov 16)
- <Possible follow-ups>
- Re: Web logging Web Manager (Nov 15)
- Web logging Stephane Auger (Nov 15)
- Re: Web logging Michael C. McDonnell (Nov 15)
- RE: Web logging Omar Salvador Alcalá Ruiz (Nov 15)
- RE: Web logging ttate (Nov 15)
- RE: Web logging Dante Mercurio (Nov 15)
- RE: Web logging Stephane Auger (Nov 15)
- Re: Web logging Michael C. McDonnell (Nov 15)
- Re: Web logging Ted Percival (Nov 16)
- Re: Web logging Julen C (Nov 16)
- Re: Web logging Temple Tiger (Nov 17)
- RE: Web logging Stephane Auger (Nov 18)