Firewall Wizards mailing list archives
monitoring and controlling servers on internet segment
From: "Shimon Silberschlag" <shimons () bll co il>
Date: Tue, 4 May 2004 11:53:28 +0200
Lets say that a client have various servers on an internet segment, which is separated from the internal network with a firewall. The client wants to have an agent reporting various events back to the management center, which is on the internal net. The protocol in use uses fixed ports, and is encrypted with mutual authentication between machines. The client does not want to open up all servers to the internal net, so he puts an intermediary server on the internet segment, which gets the reports from all internet servers, and pushes them to the management center on the inside. There is no option to poll the intermediary. The only other option is to install a separate management center for the internet segment, with the associated costs in purchase and maintenance. Would using such a setup (the intermediary one) constitute good, bad or best practice? Shimon Silberschlag +972-3-9351572 +972-51-207130 _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- monitoring and controlling servers on internet segment Shimon Silberschlag (May 04)