I am using BEA WebLogic 6.0, using JSPs, Servlets and EJBs. My configuration will consist of:
Firewall -->Apache Web Server --->Firewall ---->BEA 6.0
I have a BEA WebLogic plug-in for Apache installed on the Apache Web Server which will redirect requests to the JSPs and Servlets on the BEA WebLogic server inside the inner firewall.
So my questions:
1) What protocol does BEA use between the Apache Web Server and the WebLogic Server - I expect it's a TCP/IP based protocol, but does it have a name?
2) What firewall ports will have to be opened in the inner firewall to allow this traffic to pass through? Do we only need to open one port and is it determined at design-time (as opposed to dynamically at runtime)?
3) Finally, does BEA provide any proxy software that will sit on the inner firewall in order to examine the "proprietary" traffic that is passing through? Or perhaps there are 3rd party proxies to help with this security issue?
4)I would not be comfortable opening up ports on the inner firewall without having some mechanism to examine the TCP/IP packets in detail - do you agree?
All thoughts greatly appreciated