We are running into a few companies demanding that we use proxy firewalls instead of stateful inspection. My boss made the following comment: " ... an inbound proxy firewall does not provide any additional protection that I can see. If port 80 is open through a proxy server, the server can still be compromised if it has a vulnerability on that port." Are any of you also advocating Proxy Firewalls as a security requirement. If so, would you expound on all the reasons and point me to some good documentation?
