Masqerading vs. Applikationproxy

To: debian-firewall@lists.debian.org
Subject: Masqerading vs. Applikationproxy
From: Waldemar Brodkorb <waldemar@thinknow.de>
Date: Wed, 26 Sep 2001 23:54:23 +0200
Message-id: <20010926235422.L762@thinknow.de>
Mail-followup-to: debian-firewall@lists.debian.org
Reply-to: Waldemar Brodkorb <waldemar@thinknow.de>

Hello *,

I have a question about firewall's and security on debian linux.

Is there an advantage to use application proxy's instead of a
masqerading box to secure a LAN with private IP addresses from
the dangerous internet.

I don't mean danger from inside the LAN (which could be solved
through user authentication, IP-based ACL's ...) 

When I have to allow users inside my network the use of IRC, ICQ, 
RealAudio/RealVideo or FTP (with a real FTP client), is then an 
application proxy more secure than masqerading?

Under application proxy's I understand the use of squid
(for http/ftp/https) or dante (for socks5 aware applications).

thanks for any comments in advance.

    bye
        Waldemar

Reply to:

Follow-Ups:
- Re: Masqerading vs. Applikationproxy
  - From: "Josef Bergmann" <joe@bec.at>
- Re: Masqerading vs. Applikationproxy
  - From: Bernd Eckenfels <lists@lina.inka.de>

Prev by Date: AW: Help I am getting frustrated
Next by Date: Re: Masqerading vs. Applikationproxy
Previous by thread: AW: Help I am getting frustrated
Next by thread: Re: Masqerading vs. Applikationproxy
Index(es):
- Date
- Thread