LOGBOOK

HELP

Quiz Entry - updated: 2026.07.05

What is a reverse proxy and what security functions can it provide?

A server in front of your backends that acts as a single entry point — letting you centralize WAF, TLS, auth, and rate limiting before traffic reaches the apps.

Clients on the internet reach one reverse proxy (WAF, TLS termination, auth, rate limiting) that dispatches to several backend apps.

* One reverse proxy is the single choke point where inbound defences concentrate before traffic ever reaches the apps. *

A server that sits between clients and backends, acting as a single entry point to the internal network.

Security functions:

  • WAF — Inspects HTTP traffic for SQL injection, XSS, etc.
  • TLS termination — Handles HTTPS even if backends use plain HTTP internally
  • Authentication/SSO — Centralizes login before requests reach applications
  • Rate limiting — Prevents DoS by throttling excessive requests
  • Request filtering — Blocks malicious payloads before they reach vulnerable apps

Why it matters: Creates defense in depth — even if an application has vulnerabilities, the proxy provides an additional security layer in front of it.

Common tools: Nginx, HAProxy, Cloudflare, AWS ALB, Traefik.

Go deeper:

From Quiz: SPRG / Secure Architecture & Design | Updated: Jul 05, 2026