Appendix A. Tivoli Firewall Security Toolbox overview 177

Event Sink

This component emulates the Tivoli Enterprise Console® (TEC) Server. All
non-TME adapters served by this Event Sink are configured to point to this as
their TEC Server. In the firewall environment where the firewall separates
non-TME adapter machine from the Gateway, the Event Sink collects the events
sent from non-TME adapters as if it were a TEC server and sends the events to
the TEC server. The Event Sink can collect the events from multiple non-TME
adapters.
Tivoli environments with single firewall
On the secure side of the firewall, TFST provides an Endpoint Proxy that
connects to the Gateway as if it were the Endpoints. On the less secure side of
firewall, Endpoints are connected to the Gateway Proxy as if it were the
Gateway. The Gateway Proxy and Endpoint Proxy communicate with each other
through the firewall. Figure A-1 shows a simple configuration with one G ateway
Proxy and one Endpoint Proxy.
Figure A-1 Tivoli Endpoint and Gateway proxies communication through firewall
Endpoint
Gateway
Firewall
less secure
Endpoint Proxy
Gateway Proxy
Endpoint
Endpoint
more secure