| Bookshelf Home | Contents | Index | Search | PDF | |
Security Guide for Siebel eBusiness Applications > Physical Deployment and Auditing >
Firewall Support
A firewall separates a company's public Siebel Web Clients from its internal network and controls network traffic between the two domains. A firewall defines a focal point to keep unauthorized users out of a protected network, prohibits vulnerable services from entering or leaving the network, and provides protection from various kinds of IP spoofing and routing attacks.
Firewalls simplify system security by consolidating security resources. Firewalls often include one or more of the following capabilities:
- Proxy. A proxy (also known as an application-level gateway) acts as an intermediary to prevent direct connection between a local corporate network and the outside world. Proxy services shield internal IP addresses from the Internet.
- Network Address Translation (NAT). NAT technology transparently rewrites the IP addresses of Internet connections as they move across the firewall boundary. This allows multiple computers in a local network to hide behind a single IP address on the Internet.
- Virtual Private Networks (VPN). VPN is a technique that allows computers outside the firewall to tunnel traffic through a firewall, then appear as if they are connected inside the firewall. VPN technology allows employees working at home or on the road to access many corporate intranets (for example, mail servers, file shares, and so on) which otherwise would not be sufficiently secured to be placed outside the firewall.
| Bookshelf Home | Contents | Index | Search | PDF | |
Security Guide for Siebel eBusiness Applications Published: 23 June 2003 |