Changes between Version 1 and Version 2 of proxy-overview

Show
Ignore:
Timestamp:
01/13/11 18:15:10 (8 years ago)
Author:
ibaldin (IP: 152.54.9.21)
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • proxy-overview

    v1 v2  
    11= Overview of proxying = 
     2 
     3Proxying is needed to expose VMs created in private address spaces to the public Internet. A number of mechanisms exist to achieve this. Since VMs are created and destroyed dynamically, proxy mechanism must respond to these events to dynamically create and remove configurations as VMs come and go.  
     4 
     5The most common scenario is NAT preventing direct access to internal hosts. The proxy mechanisms typically exposed a limited number of applications on guest VMs to the outside world. Specifically certain TCP or UDP ports on the VM are exposed via a proxy mechanism with a public IP address. The following mechanisms are discussed in detail: 
     6 
     7 * Reverse SSH tunnel proxying - useful when ORCA cannot access or control the NAT host, however a host with public IP under ORCA control is available 
     8 * [wiki:shorewall-dnat-proxy DNAT port forwarding] - useful when ORCA has access to the NAT host. This specific scenario relies on [http://www.shorewall.net Shorewall firewall management framework].