Firewall konzept

---

• From: UseNet-Posting-Nospam-74308-@xxxxxxxxxxxxxxxxx (Rainer Zocholl)
• Date: 22 Mar 2008 20:42:00 +0100

---

Consultante meint, das dieses ein sinnvolles Firewall konzept sei:



<spoiler (Brechreizgefahr!)>
<spoiler>
<spoiler>
<spoiler>
<spoiler>
<spoiler>
<spoiler>
<spoiler>
<spoiler>
<spoiler>
<spoiler>
<spoiler>
<spoiler>
<spoiler>





Internet
|
|
|
|
|
+----+
|NAT | (Optional)
+----+
|
|
+-----------+
| Microsoft |
| Proxy |
| Server |
+-----------+
|
|
+------------LAN----Arbeitsplätze
|
|
+-------------+
| MS Exchsnge |
+-------------+

Wobei der Exchange server "nur" per HTTPS von Aussen zuerreichen ist
und das MS Advandad Prxy als "Firewall Apliynce" dem Kunden verkauefn wrdern
soll. DMZ mit spiegel-Exchange server etc. hält man für unnötig kompliziert
un teuer, da ja nur mittels Zertifikat autentisieriert Clients
(PDA,Notbooks) angenommen werden... (Wie auch immer diese mit tumpen PDA
gehen soll) der Anschluss des LANs und der Domain würde durch eine
DMZ erschwert/unmöglich.


Was soll/kann man da noch sagen?


Rainer

--
Transparency International definiert Korruption als
Missbrauch von anvertrauter Macht zum privaten Nutzen oder Vorteil. [...]
Corruption is operationally defined as the misuse of entrusted power for
private gain. [...]
.

---

• Follow-Ups:
  • Re: Firewall konzept
    • From: Florian Weimer
  • Re: Firewall konzept
    • From: Lutz Donnerhacke
  • Re: Firewall konzept
    • From: Oliver Schad
  • Re: Firewall konzept
    • From: Juergen P. Meier
  • Re: Firewall konzept
    • From: Bernd Eckenfels

• Prev by Date: Re: Cisco PIX
• Next by Date: Re: Firewall konzept
• Previous by thread: Cisco PIX
• Next by thread: Re: Firewall konzept
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Enigma 1501 - Five sets at Wimbledon ... possible spoiler ... of which he won as server. ... Thus the total number of games must be even. ... the only permissible set scores are ... (rec.puzzles) Re: Enigma 1501 - Five sets at Wimbledon ... possible spoiler ... I'll show a simple goto in C code ... of which he won as server. ... Thus the total number of games must be even. ... (rec.puzzles) Re: Stunning Test! ... Arcadian Rises wrote: ... People who intended to take the "stunning" test took it before they ... got to read my spoiler.] ... my server at 11:47 last night and I only saw it this morning. ... (alt.usage.english) Re: Open source firewalls ... > it on to the real server! ... Some of the validations can be done at proxy end. ... mean to say is it can't garantee avoiding buffer overflows. ... > are usually avoided in the firewall proxy itself. ... (Linux-Kernel) Re: [fw-wiz] httport 3snf ... >> wouldn't have gotten SSH out of my firewall. ... > Postfix SMTP server with a wildcard MX that handed the mail that wasn't ... > destined to me off to the downstream MS stuff, and an HTTP proxy server ... All it needs is a written policx "Internet access is ... (Firewall-Wizards)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

newsgroups.derkeiler.com  > Archive  > De  > de.comp.security.firewall  > 2008-03