Proxies

A proxy is a user-level application that runs on the Screen. The main purpose of proxies is to provide content filtering (for example, allow or deny Java applets) and user authentication.

Using Proxies

SunScreen lets you set up proxies for FTP, HTTP, SMTP, and Telnet protocols. Although each proxy has different filtering capabilities and requirements, you can allow or deny sessions based on source or destination addresses of packets. Proxies share common objects and policy rule files. To start a proxy, you set up rules for a proxy in your security policy and activate the policy.

Use of these proxies does not require installing any additional client or server system software. Some changes, however, may be required in system configurations or user-supplied commands to access protected destinations through the proxies.

Event Logging With Proxies

Event logging (failure and success, including subsystem authentication) through the log browser supports filtering capabilities to define and store named filtering macros. The size of the log is configurable. The log collection facility allows the proxies to add information to the current log. The types of logged events are extensible to anticipate the evolving use of this facility. Filtering automates uploading, storage, and postprocessing of logs. You can create postprocessing of your choice of uploaded logs (for instance, analysis and compression).