Ask the Expert

Establishing tiers on database proxy server

I am using a server as a proxy server to the actual Oracle 9i database. Our customer has requested that serveral tiers be established for the production database. Prior to the first tier, there will be a server that users will pass through to go to the tier that has the database. Each tier will have a firewall in between. The server that has the database will not have anything else running on it except the database. I'm not sure of the optimum way to set up the first server (pass through). Is there any special way to allow a user to log into the server and connect with the database server? Isn't this the same as using this first server as a client? Will it talk to the database via tnsnames and SQLNET? Am I on the right track?

    Requires Free Membership to View

Usually, the tiers you're describing are "middle tier" systems running application servers of some type. Your "first" server will likely be a web server where the application runs. It will make connections to the database (likely via JDBC or ODBC) which is on a different host. You should not need to configure these hosts any differently than normal except that you should pay special attention to securing the hosts and the installations since this is likely an internet-facing application. The application code is where there's the biggest chance for security vulnerabilities (SQL injection being the most common), so you may want to have an expert do a security review on your code before deployment.

This was first published in November 2004

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: