|
|
 |
|
I-DBC - Typical Deployment Example
| A typical deployment scenario is the screened subnet firewall
architecture. As shown in the figure below two packet filters are
used to create an outer, screened subnet or demilitarized zone
(DMZ). This subnet contains the IIOP Domain Boundary Controller,
which provides the gateway to IIOP receivers located inside the
protected domain. |
|
|
The IIOP receiver can be a standalone application, or a container
environment such as an EJB application server. The exterior firewall
(packet filter) is the connection point to the public network. It
restricts internet access to specific systems in the screened subnet
and allows only these systems to access the internet. It blocks all
other traffic from/to the public network. The interior firewall
(packet filter) restricts access from the protected network to
specific systems on the screened subnet and allows only these to
access the protected network. It blocks all other traffic to the
protected domain.
Other Deployment ExamplesThe I-DBC is an
infrastructure building block that can be deployed in many ways, in
diverse scenarios. In the figure below you see other typical
deployments in various alternatives, e.g. for the protection of EJB
servers in J2EE scenarios, and for the protection of Corba enabled
mainframes.
 printable
version
|
 |
