|
A firewall is a computer which joins two networks, but
only lets certain types of network message pass from one to
the other. In your case, a firewall would join your school's
network ("inside" the firewall) to the Internet ("outside"
the firewall).
The ANT Internet Server Suite makes your server computer
act as a firewall. The only network messages allowed to pass
from one side to the other, are those to do with the Internet
services which the server suite supports: web, email, FTP,
newsgroup, and telnet information. Any other messages going
round your school network -- for example, files being loaded
or saved on network fileservers -- are prohibited from
crossing the firewall and are thus safe from external attack.
 You can see this in the diagram, right. Email and
other approved messages (1) are passed straight through by
the server computer; unapproved messages from inside on your
own network (2), such as attempts to bypass the server
suite's access controls, are stopped and do not cross.
Likewise, unapproved messages from outside on the Internet
(3), such as illicit attempts to access your fileservers, do
not reach their targets.
|
|
Users of the ANT Internet Server Suite must log
on to the server computer before using any of its
facilities, even sending email or using the web. This has
two main benefits: firstly, it greatly reduces the risk of
people outside your network using your server (either for its
own services or as a "staging post" for attacking other
sites); and secondly, it lets you, the administrator, find
out which of your users was responsible for each of the
server's actions.
|
