An SSL to clear-text redirector or proxy server providing encryption services for SSL enabled BlueZone telnet , FTP sessions, and HTTPS. When an encrypted session is established to the Security Server, the Security Server in turn establishes a clear text connection to the host.
A clear-text to SSL redirector or proxy server providing encryption services for non-SSL capable TCP/IP clients allowing them to connect to SSL capable servers. When a TCP/IP connection is established between a client application and the SEAGULL Security Server, the Security Server in turn establishes a SSL session to another Security Server or any SSL capable server.
A TCP/IP socket is the combination of an IP address and a TCP port number. TCP/IP supports 65,535 different port numbers, therefore an equal number of sockets per IP address on a server. Port numbers from 0-1024 are reserved for specific protocols and should not be used when configuring the secure side of the Security Server.
When a TCP/IP connection is established, the application opens a socket on its computer and connects to a socket on the other computer. A secure socket is a TCP/IP socket connection which has been established using the Secure Sockets Layer protocol.
The Security Server provides configuration parameters to define the path through the server hardware (Bindings) and between TCP/IP sockets (Connections). The Security Server is configured to listen for SSL connection requests from BlueZone on one socket and create a clear text connection to the host computer on another socket. Once the connection is established between BlueZone and the Security Server, the Security Server establishes a separate connection to the configured host then transfers the data between the two connections. Encryption and decryption of the data passing between BlueZone and the Security Server occurs transparently to the user. The indication to the user has that the session is encrypted is the lock icon on the BlueZone StatusBar as shown in the following example.