Proxy within DMZ and Proxy begind the firewall
Posted on 2014-03-31
Is there any advantage to providing a proxy server within the DMZ, as opposed to putting a proxy behind the firewall and sending out only through ports enabled by the firewall?
In other words, in one configuration, you put your app behind a firewall, and your proxy server in the DMZ.
In the other scenario you put the app behind the firewall, but a proxy begind the firewall as well.
Why would the first method (proxy in the DMZ) be better than the second?