DMZ Secure Proxy Server for IBM WebSphere Application Server routing considerations

This topic summarizes some of the security implications that must be considered when choosing how your DMZ Secure Proxy Server for IBM® WebSphere® Application Server will match incoming HTTP requests to an application or routing rule.

The DMZ Secure Proxy Server for IBM WebSphere Application Server can be configured to route requests either statically or dynamically. Using static routing specifies routing is performed using a flat configuration file using routing precedence that is inherent to the ordering of the directives. Requests can also be routed dynamically using a best match mechanism that determines the installed application or routing rule that corresponds to a specific request. The DMZ Secure Proxy Server for IBM WebSphere Application Server will dynamically discover the best route to a destination and distribute to servers with like protocols. It is considered more secure to use static routing than dynamic routing. This is because dynamic routing requires the secured proxy server to communicate with the application server to map requests where as static routing is self contained by the secure proxy server requiring no additional communication.

Table 1. Routing options.

This table lists the routing options.

Static Routing This is considered a high security level setting.
Dynamic Routing This is considered a low and medium security level setting.



Related concepts
DMZ Secure Proxy Server for IBM WebSphere Application Server start up user permissions
DMZ Secure Proxy Server for IBM WebSphere Application Server administration options
Error handling security considerations for the DMZ Secure Proxy Server for IBM WebSphere Application Server
Related tasks
Configure secure routing for a DMZ Secure Proxy Server
Tuning the security properties for the DMZ Secure Proxy Server for IBM WebSphere Application Server
Related reference
DMZ Secure Proxy Server for IBM WebSphere Application Server
ProxyManagement command group for the AdminTask object
Concept topic Concept topic    

Terms and conditions for information centers | Feedback

Last updatedLast updated: Feb 5, 2014 9:49:51 PM CST
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=compass&product=was-nd-mp&topic=csecspxyrouting
File name: csec_spxy_routing.html