RFC 7230 - Hypertext Transfer Protocol (HTTP/1.1)fleeting
- External reference: https://tools.ietf.org/html/rfc7230
RFC 7230 - Hypertext Transfer Protocol (HTTP/1.1): Message Syntax and Routing
three common forms of HTTP intermediary: proxy, gateway, and tunnel.
A “proxy” is a message-forwarding agent that is selected by the client, usually via local configuration rules, to receive requests for some type(s) of absolute URI and attempt to satisfy those requests via translation through the HTTP interface. Some translations are minimal, such as for proxy requests for “http” URIs, whereas other requests might require translation to and from entirely different application-level protocols. Proxies are often used to group an organization’s HTTP requests through a common intermediary for the sake of security, annotation services, or shared caching. Some proxies are designed to apply transformations to selected messages or payloads while they are being forwarded
A “gateway” (a.k.a. “reverse proxy”) is an intermediary that acts as an origin server for the outbound connection but translates received requests and forwards them inbound to another server or servers. Gateways are often used to encapsulate legacy or untrusted information services, to improve server performance through “accelerator” caching, and to enable partitioning or load balancing of HTTP services across multiple machines
A “tunnel” acts as a blind relay between two connections without changing the messages. Once active, a tunnel is not considered a party to the HTTP communication, though the tunnel might have been initiated by an HTTP request. A tunnel ceases to exist when both ends of the relayed connection are closed. Tunnels are used to extend a virtual connection through an intermediary, such as when Transport Layer Security (TLS, [RFC5246]) is used to establish confidential communication through a shared firewall proxy.
an “interception proxy” [RFC3040] (also commonly known as a “transparent proxy” [RFC1919] or “captive portal”) differs from an HTTP proxy because it is not selected by the client. Instead, an interception proxy filters or redirects outgoing TCP port 80 packets (and occasionally other common port traffic). Interception proxies are commonly found on public network access points, as a means of enforcing account subscription prior to allowing use of non-local Internet services, and within corporate firewalls to enforce network usage policies.