On 11/02/18 09:39, Yuri wrote: > Ah. My bad. Correctly Defence in depth: > > https://en.wikipedia.org/wiki/Defense_in_depth_(computing) > > > 11.02.2018 02:29, Yuri пишет: >> No. This reason is obviously not strong enough. As by as requirement >> configure firewalls also on servers - whenever they placed. Security in >> depth - did you hear this term? >> >> >> 11.02.2018 02:26, Peng Yu пишет: >>>> What is your reason for wanting "no restrictions"? >>> The proxied servers are behind a firewall already, which protect them >>> from any unwanted access. Is this reason strong enough to have no >>> restrictions set? >>> >
Indeed as Yuri said. Firewall rules are not enough. The proxy is making connections from *inside* the network. A firewall at the network edge cannot prevent, nor even see these. Amos _______________________________________________ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.org/listinfo/squid-users
