LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 02-24-2014, 07:22 PM   #1
bkone
Member
 
Registered: Jun 2006
Distribution: SUSE, Red Hat, Oracle Linux, CentOS
Posts: 108

Rep: Reputation: 15
Help with passing third party credit card transaction


I have an internal webserver/database/application which is used by several Agents to place orders. Basically, printed materials like business cards, hats, golf balls with company logo type merchandise. When they place the order if it is something that our print shop has on hand the order is processed without any credit card processing. If the item is not on hand the browser redirects them to Sterling which processes the their credit card payment. Once complete Sterling sends a file back with the user's email address, order ID, and an approved or denied to close out the transaction. The problem is our firewall is blocking that close receipt. The webserver/database/application server sits on the internal network and not in the DMZ. This server is running a custom CentOS provided by a vendor. Someone had suggested standing up a reverse proxy in the DMZ to take the "close out" packet sent from Sterling and deliver it to the internal CentOS server. How difficult is this? Is it possible to use for an https post request? Any other "easier" suggestions other than poking the hole in the firewall which will not happen. Never done anything with reverse proxies but all I need is this post request from Sterling to close out the browser session. Anyone else encounter anything similar and if so how did you overcome it? I also read about B2B gateways but that is not in the budget. Any open source ones?
 
Old 02-25-2014, 10:24 AM   #2
TB0ne
LQ Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 27,336

Rep: Reputation: 8091Reputation: 8091Reputation: 8091Reputation: 8091Reputation: 8091Reputation: 8091Reputation: 8091Reputation: 8091Reputation: 8091Reputation: 8091Reputation: 8091
Quote:
Originally Posted by bkone View Post
I have an internal webserver/database/application which is used by several Agents to place orders. Basically, printed materials like business cards, hats, golf balls with company logo type merchandise. When they place the order if it is something that our print shop has on hand the order is processed without any credit card processing. If the item is not on hand the browser redirects them to Sterling which processes the their credit card payment. Once complete Sterling sends a file back with the user's email address, order ID, and an approved or denied to close out the transaction. The problem is our firewall is blocking that close receipt. The webserver/database/application server sits on the internal network and not in the DMZ. This server is running a custom CentOS provided by a vendor. Someone had suggested standing up a reverse proxy in the DMZ to take the "close out" packet sent from Sterling and deliver it to the internal CentOS server. How difficult is this? Is it possible to use for an https post request? Any other "easier" suggestions other than poking the hole in the firewall which will not happen. Never done anything with reverse proxies but all I need is this post request from Sterling to close out the browser session. Anyone else encounter anything similar and if so how did you overcome it? I also read about B2B gateways but that is not in the budget. Any open source ones?
You have already provided the solution:
Quote:
Originally Posted by bkone
This server is running a custom CentOS provided by a vendor.
If you're paying a vendor, then you're also paying them for support and resolution of problems like this. Putting a workaround in place is only going to give you more headaches (since YOU will have to support the workaround), but the vendor will be able to say "Well, you're in a non-standard configuration...sorry!" with any problem you might bring to them.

You *CAN* set up a reverse proxy on Linux for free, using open source products (like Apache or nginx...lots of tutorials can be found), but that isn't much more secure than just allowing traffic on the one port through the firewall. Why can't your network admins allow that traffic through? Seems easy and secure enough...they not only know the port, but the host from which it comes from...allowing ONLY that should be trivial.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Warning about Chase Card Services when closing credit card accounts moxieman99 General 8 04-18-2010 04:25 PM
think twice before using that credit card rob.rice General 27 08-24-2008 04:30 AM
My credit card stolen !! techristian Linux - Security 11 02-01-2006 09:11 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 05:42 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration