Upload File

proxy server

5
Proxy Server A Proxy Server is computer that functions as an intermediary between a web browser (such as Internet Explorer) and the Internet. Proxy servers help improve web performance by storing a copy of frequently used webpages. When a browser requests a webpage stored in the proxy server's collection (its cache), it is provided by the proxy server, which is faster than going to the web. Proxy servers also help improve security by filtering out some web content and malicious software. A Proxy Server is a server (a computer system or an application) that acts as an intermediary for requests from clients seeking resources from other servers. A client connects to the proxy server, requesting some service, such as a file, connection, web page, or other resource available from a different server and the proxy server evaluates the request as a way to simplify and control its complexity. Proxies were invented to add structure and encapsulation to distributed systems. Today, most proxies are web proxies, facilitating access to content on the World Wide Web and providing anonymity. Proxy Servers have these main purposes: Improve Performance: Proxy servers can dramatically improve performance for groups of users. This is because it saves the results of all requests for a certain amount of time. Consider the case where both user X and user Y access the World Wide Web through a proxy server. First user X requests a certain Web page, which we'll call Page 1. Sometime later, user Y requests the same page. Instead of forwarding the request to the Web server where Page 1 resides, which can be a time-consuming operation, the proxy server simply returns the Page 1 that it already fetched for user X. Since the proxy server is often on the same network as the user, this is a much faster operation. Real proxy servers support hundreds or thousands of users. The major online services such as America Online, MSN and Yahoo, for example, employ an array of proxy servers. Filter Requests: Proxy servers can also be used to filter requests. For example, a company might use a proxy server to prevent its employees from accessing a specific set of Web sites. Translation: A translation proxy is a proxy server that is used to localize a website experience for different markets. Traffic from global audiences is routed through the translation proxy to the source website. As visitors browse the proxy site, requests go back to the source site where pages are rendered. Original language content in the response is replaced by translated content Figure 1 IP Address Replacement

Upload: netwax-lab

Post on 17-Jul-2015

102 views

Category:

Technology


1 download

Report

TRANSCRIPT

Page 1: Proxy Server

Proxy Server

A Proxy Server is computer that functions as an intermediary between a web browser (such as Internet

Explorer) and the Internet. Proxy servers help improve web performance by storing a copy of frequently

used webpages. When a browser requests a webpage stored in the proxy server's collection (its cache),

it is provided by the proxy server, which is faster than going to the web. Proxy servers also help improve

security by filtering out some web content and malicious software.

A Proxy Server is a server (a computer system or an application) that acts as an intermediary for

requests from clients seeking resources from other servers. A client connects to the proxy server,

requesting some service, such as a file, connection, web page, or other resource available from a

different server and the proxy server evaluates the request as a way to simplify and control its

complexity. Proxies were invented to add structure and encapsulation to distributed systems. Today,

most proxies are web proxies, facilitating access to content on the World Wide Web and providing

anonymity.

Proxy Servers have these main purposes:

Improve Performance: Proxy servers can dramatically improve performance for groups of users.

This is because it saves the results of all requests for a certain amount of time. Consider the case

where both user X and user Y access the World Wide Web through a proxy server. First user X

requests a certain Web page, which we'll call Page 1. Sometime later, user Y requests the same

page. Instead of forwarding the request to the Web server where Page 1 resides, which can be a

time-consuming operation, the proxy server simply returns the Page 1 that it already fetched for

user X. Since the proxy server is often on the same network as the user, this is a much faster

operation. Real proxy servers support hundreds or thousands of users. The major online services

such as America Online, MSN and Yahoo, for example, employ an array of proxy servers.

Filter Requests: Proxy servers can also be used to filter requests. For example, a company might

use a proxy server to prevent its employees from accessing a specific set of Web sites.

Translation: A translation proxy is a proxy server that is used to localize a website experience for

different markets. Traffic from global audiences is routed through the translation proxy to the

source website. As visitors browse the proxy site, requests go back to the source site where

pages are rendered. Original language content in the response is replaced by translated content

Figure 1 IP Address Replacement

Page 2: Proxy Server

Proxy Server

as it passes back through the proxy. The translations used in a translation proxy can be either

machine translation, human translation, or a combination of machine and human translation.

Different translation proxy implementations have different capabilities. Some allow further

customization of the source site for local audiences such as excluding source content or

substituting source content with original local content.

Accessing Services Anonymously: An anonymous proxy server (sometimes called a web proxy)

generally attempts to anonymize web surfing. There are different varieties of anonymizers. The

destination server (the server that ultimately satisfies the web request) receives requests from

the anonymizing proxy server, and thus does not receive information about the end user's

address. The requests are not anonymous to the anonymizing proxy server, however, and so a

degree of trust is present between the proxy server and the user. Many proxy servers are funded

through a continued advertising link to the user.

Security: A proxy can keep the internal network structure of a company secret by using network

address translation, which can help the security of the internal network. This makes requests

from machines and users on the local network anonymous. Proxies can also be combined with

firewalls.

An incorrectly configured proxy can provide access to a network otherwise isolated from the Internet.

Types of Proxy

A proxy server may reside on the user's local computer, or at various points between the user's

computer and destination servers on the Internet.

1. A proxy server that passes requests and responses unmodified is usually called a gateway or

sometimes a tunneling proxy.

2. A forward proxy is an Internet-facing proxy used to retrieve from a wide range of sources (in

most cases anywhere on the Internet).

Figure 2 Proxy Server Working

Page 3: Proxy Server

Proxy Server

3. A reverse proxy is usually an Internet-facing proxy used as a front-end to control and protect

access to a server on a private network. A reverse proxy commonly also performs tasks such as

load-balancing, authentication, decryption or caching.

Open Proxies

An open proxy is a forwarding proxy server that is accessible by any Internet user. An anonymous open

proxy allows users to conceal their IP address while browsing the Web or using other Internet services.

There are varying degrees of anonymity however, as well as a number of methods of 'tricking' the client

into revealing itself regardless of the proxy being used.

Reverse Proxies

A reverse proxy (or surrogate) is a proxy server that appears to clients to be an ordinary server.

Requests are forwarded to one or more proxy servers which handle the request. The response from the

proxy server is returned as if it came directly from the origin server, leaving the client no knowledge of

the origin servers. Reverse proxies are installed in the neighborhood of one or more web servers. All

traffic coming from the Internet and with a destination of one of the neighborhood's web servers goes

through the proxy server. The use of "reverse" originates in its counterpart "forward proxy" since the

reverse proxy sits closer to the web server and serves only a restricted set of websites.

There are several reasons for installing reverse proxy servers:

a) Encryption/SSL Acceleration: When secure web sites are created, the SSL encryption is often not

done by the web server itself, but by a reverse proxy that is equipped with SSL acceleration

hardware. See Secure Sockets Layer. Furthermore, a host can provide a single "SSL proxy" to

Figure 3 Reverse Proxy

Page 4: Proxy Server

Proxy Server

provide SSL encryption for an arbitrary number of hosts; removing the need for a separate SSL

Server Certificate for each host, with the downside that all hosts behind the SSL proxy have to

share a common DNS name or IP address for SSL connections. This problem can partly be

overcome by using the SubjectAltName feature of X.509 certificates.

b) Load Balancing: The reverse proxy can distribute the load to several web servers, each web

server serving its own application area. In such a case, the reverse proxy may need to rewrite the

URLs in each web page (translation from externally known URLs to the internal locations).

c) Serve/Cache Static Content: A reverse proxy can offload the web servers by caching static

content like pictures and other static graphical content.

d) Compression: The proxy server can optimize and compress the content to speed up the load

time.

e) Spoon Feeding: reduces resource usage caused by slow clients on the web servers by caching the

content the web server sent and slowly "spoon feeding" it to the client. This especially benefits

dynamically generated pages.

f) Security: The proxy server is an additional layer of defense and can protect against some OS and

Web Server specific attacks. However, it does not provide any protection from attacks against

the web application or service itself, which is generally considered the larger threat.

g) Extranet Publishing: A reverse proxy server facing the Internet can be used to communicate to a

firewall server internal to an organization, providing extranet access to some functions while

keeping the servers behind the firewalls. If used in this way, security measures should be

considered to protect the rest of your infrastructure in case this server is compromised, as its

web application is exposed to attack from the Internet.

Proxy vs. NAT

Most of the time 'proxy' refers to a layer-7 application on the OSI reference model. However, another

way of proxying is through layer-3 and is known as Network Address Translation (NAT). The difference

between these two proxy technologies is the layer in which they operate, and the procedure to

configuring the proxy clients and proxy servers.

In client configuration of layer-3 proxy (NAT), configuring the gateway is sufficient. However, for client

configuration of a layer-7 proxy, the destination of the packets that the client generates must always be

the proxy server (layer-7), then the proxy server reads each packet and finds out the true destination.

Page 5: Proxy Server

Proxy Server

Because NAT operates at layer-3, it is less resource-intensive than the layer-7 proxy, but also less

flexible. As we compare these two technologies, we might encounter a terminology known as

'transparent firewall'. Transparent firewall means that the layer-3 proxy uses the layer-7 proxy

advantages without the knowledge of the client. The client presumes that the gateway is a NAT in layer-

3, and it does not have any idea about the inside of the packet, but through this method the layer-3

packets are sent to the layer-7 proxy for investigation.


eBook Squid Proxy Server

Firewall and Proxy Server

Squid (WWW Proxy Server)

Traffic Server Proxy

Comodo Certificate Authority Proxy Server · sonaltton Comodo Certificate Authority Proxy Server Installation guide Rev. 0006

Content Server Reverse Proxy Server Resource Guide · PDF fileContent Server - Reverse Proxy Server Resource Guide ... Using Squid Obtaining and ... Content Server Reverse Proxy Server

Apache Proxy Server

Advanced Proxy Server

Linux11 Proxy Server

Java Proxy Server

DHCP DNS Proxy Server Linux

Proxy Server

Proxy Server 2.0 Microsoft Proxy Server 2.0. Presentation Outline Overview of Proxy Server. Examples of Capacity Planning. Web Proxy Server Configuration

Cisco SIP Proxy Server Installation Guide Version 2 · Cisco SIP Proxy Server Installation Guide Version 2.1 Prerequisites 3 Cisco SIP Proxy Server Installation Guide 78-15951-01

Adm Do Proxy Server - Monografia

1 Chapter 6: Proxy Server in Internet and Intranet Designs Designs That Include Proxy Server Essential Proxy Server Design Concepts Data Protection in

HIAB Server Settings - outpost24.com · Socks4 Socks4a Socks5 Proxy Server Define the proxy server. Proxy Port Define the port for which you connect to the proxy server. Username

Microsoft Proxy Server 2.0

Http Proxy Server

Proxy Server • Internet Information Server (IIS) • Caching

Free Proxy Server List

Proxy Server Performance

Firewall and Proxy Server HOWTO - index-of.co.ukindex-of.co.uk/Linux/Linux Firewall and Proxy Server-HOWTO.pdf · 9.Installing a Transparent SQUID proxy ... Firewall and Proxy Server

Cloud Onload NGINX Proxy Cookbook - xilinx.com · Open source NGINX [engine x] is an HTTP and reverse proxy server, a mail proxy server, and a generic TCP/UDP proxy server. NGINX

57791288 Proxy Server

Proxy Installation Guide - Red Hat Customer Portal · 2017. 7. 19. · Proxy Caching Server or the Satellite Proxy server (for local packages). The Satellite Proxy server and client

Firewall and Proxy Server HOWTO - the-eye.eu fileTable of Contents Firewall and Proxy Server HOWTO .....1

Public IP - Proxy Server

(eBook) Squid Proxy Server

Firewall with proxy server

(is) ABAP Proxy Communication Scenario (Server Proxy)

The global free wi-fi Roaming Service · RADIUS Proxy Server Indian (ERNET) National RADIUS Proxy Server Australian (AARNET) National RADIUS Proxy ... Windows Server , RedHat, CentOS,

Chapter 27 WebSphere Proxy Server: On Demand Configuration …28Proxy-Server$… · WebSphere Application Server: ... Chapter 27 WebSphere Proxy Server: On Demand Configuration

Configuracion proxy Windows server 2008

PingDirectoryProxy Server Administration Guide · Proxy Server, it will not be necessary to run the create-initial-proxy-config tool again, as the Directory Proxy Server setup has