IBM WebSphere Application Server용 DMZ 보안 프록시 서버 routing considerations

This topic summarizes some of the security implications that must be considered when choosing how your IBM® WebSphere® Application Server용 DMZ 보안 프록시 서버 will match incoming HTTP requests to an application or routing rule.

The IBM WebSphere Application Server용 DMZ 보안 프록시 서버 can be configured to route requests either statically or dynamically. Using static routing specifies routing is performed using a flat configuration file using routing precedence that is inherent to the ordering of the directives. Requests can also be routed dynamically using a best match mechanism that determines the installed application or routing rule that corresponds to a specific request. The IBM WebSphere Application Server용 DMZ 보안 프록시 서버 will dynamically discover the best route to a destination and distribute to servers with like protocols. It is considered more secure to use static routing than dynamic routing. This is because dynamic routing requires the secured proxy server to communicate with the application server to map requests, whereas static routing is self-contained by the secure proxy server and requires no additional communication.

Table 1. Routing options. This table lists the proxy routing options.
Routing option Definition
Static Routing This is considered a high security level setting.
Dynamic Routing This is considered a low and medium security level setting.

주제 유형을 표시하는 아이콘 개념 주제



시간소인 아이콘 마지막 업데이트 날짜: July 9, 2016 6:06
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=cord&product=was-nd-mp&topic=csec_spxy_routing
파일 이름:csec_spxy_routing.html