[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PostgreSQL Question

To: members@xxxxxxxxxxxxxxxxxx
Subject: Re: PostgreSQL Question
From: Adam Tauno Williams <adam@xxxxxxxxxxxxxxxx>
Date: Thu, 05 Apr 2001 07:45:19 -0400 (EDT)
In-Reply-To: <5.0.0.25.0.20010404160440.02b96060@mail.zoner.org>
References: <Pine.SUN.4.30.0104041438460.22651-100000@cobra.mlc.lib.mi.us> <5.0.0.25.0.20010404160440.02b96060@mail.zoner.org>
User-Agent: IMP/PHP IMAP webmail program 2.2.1

>Put a firewall between this host and the internet.  The three
>architectures  there are:
> 1. This host moves to a private IP address.  Only connections
> to the necessary ports are forwarded from the firewall to the host.

I don't know how PostgreSQL handles passing off connections to child processes
(on diffrent ports).  That might effect how well this works.  Anyone know?  If
not I'm willing to do a little tcpdump-ing ('cause it sound like a good thing to
know)

>2. The host moves to the DMZ, keeping its public IP.  Again,
>only connections to the necessary ports are forwarded.

Same as above.

>3. Drop a bridged firewall between the host and the internet. 
>The firewall is invisible to TCP/IP traffic, but can drop packets that flow
>through it.  Nifty, eh?

Fascinating.  I've seend the "bridge" option in "make menuconfig" but have never
used it.  Do both sides have to be the same network topology (ethernet) or is
this a diffrent type of bridging then you find in a router?  (Sounds like a
great presentation topic :)

Systems and Network Administrator
Morrison Industries
1825 Monroe Ave NW.
Grand Rapids, MI. 49505

Follow-Ups:
- Re: PostgreSQL Question
  - From: John Holland

References:
- Re: PostgreSQL Question
  - From: Mark Szidik
- Re: PostgreSQL Question
  - From: John Holland

Prev by Date: KLUG Meeting Notes - 04/03/2001
Next by Date: Re: Monthly Word From The Program Director
Prev by thread: Re: PostgreSQL Question
Next by thread: Re: PostgreSQL Question
Index(es):
- Date
- Thread