Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Front End Public Web Server?
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
Front End Public Web Server? - 15.Aug.2007 12:53:27 PM
|
|
|
charlieit
Posts: 83
Joined: 19.Aug.2004
From: US
Status: offline
|
I have an IIS web application which accesses sensitive information from SQL databases on the LAN. In addition to accessing sensitive information, this web server also stores some sensitive information (such as usernames, passwords, account information, etc.). This currently runs only on the LAN.
I am getting ready to make the services on this web server available through the Internet. My question is this:
I have a hardware firewall that has a "Front End" Exchange server in a screened subnet (perimeter network, dmz, etc.) and a "Back End" exchange server in the LAN (with ISA Server in between). Would it be "best" to also have a "Front End" public web server in the screened subnet which forwards to the "Back End" web server (that has all the sensitive information) through ISA?
I have Tom's "ISA Server 2004" book if there's a page or chapter you wish to refer to help me understand.
Thank You!
Charlie
P.S. Waiting anxiously for that next book Tom!
|
|
|
|
|
RE: Front End Public Web Server? - 21.Aug.2007 10:28:28 AM
|
|
|
tshinder
Posts: 47408
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi Charlie,
Thanks!
You'd be best to have a four NIC ISA Firewall and create anonymous access and authenticated access DMZs on it. The "hardware" firewall could provide the anonymous access DMZ, but you should check Secunia.com to see how many security flaws it has -- the ISA Firewall doesn't have any, so you don't have to check the ISA Firewall there!
HTH,
Tom
_____________________________
Thomas W Shinder, M.D.
Sr. Consultant/Technical Writer
Prowess Consulting http://www.prowessconsulting.com/
Blog: http://blogs.isaserver.org/shinder/
GET THE NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
