Prev  Chapter 8. Network deployment  Next

1. Simple single-homed Web Security Manager implementation

Simple single-homed Web Security Manager implementation

Figure 8.1. Simple single-homed Web Security Manager implementation


This scenario is the easiest to implement, since Web Security Manager can be introduced in the already established network without any major reconfigurations. A caveat with this setup is that all Web Security Manager traffic (both inbound from clients and outbound to the web systems) is using a single ethernet interface.

Web Security Manager is placed on the same network (DMZ) with the web systems web1 and web2 it is protecting.

HTTP/HTTPS traffic designated to the web systems (192.168.0.3 and 192.168.0.4) is redirected (either by forwarding IP packets via the router or by altering web systems' DNS settings) to Web Security Manager's IP address 192.168.0.2.

The web systems' default gateway is unaltered and is still the router with IP address 192.168.0.1.

© 2005 - 2012 Alert Logic inc.
Prev  Up  Next
Chapter 8. Network deployment  Home  2. Firewalled single-homed Web Security Manager implementation