Welcome to ISAserver.org

Web Application Security...

Users viewing this topic: none

Logged in as: Guest

Printable Version

All Forums >> [ISA 2006 Firewall] >> Network Infrastructure >> Web Application Security...

Page: [1]

Message

<< Older Topic Newer Topic >>

Web Application Security... - 17.Aug.2007 12:02:37 AM

charlieit

Posts: 83
Joined: 19.Aug.2004
From: US
Status: offline

I have a web app running on IIS that has to communicate with other servers on the LAN. Is there such a thing as "front end" and "back end" IIS servers for web apps as there is for exchange?

What is the best way to handle my situation?

1. A request from the Internet comes through a Sonicwall
    and into the DMZ. There is a "front end" IIS server in
    the DMZ which "forwards" web requests through ISA
    to the "back end" IIS server (with the web app) on the LAN.

2. A request from the Internet comes through a Sonicwall
    and into the DMZ. The server with the web app is in the
    DMZ. It communicates (via SSL) with the database
    server on the LAN through an ISA server.

3. A request from the Internet comes through a Sonicwall
    and then an ISA server and communicates with the web
    app server on the LAN.

I have Tom's "ISA Server 2004" if there's a page or concept you wish to refer to.

Thank You!

CharlieIT

Post #: 1

Featured Links*

RE: Web Application Security... - 13.Sep.2007 2:50:53 PM

Yorgy

Posts: 158
Joined: 20.Sep.2006
Status: offline

I have heard of front end IIS Servers for Sharepoint, but I am not sure how this would apply in your situation. I don't know enough about to even recommend it.

So, I believe your situation would be fine with a setup of
Sonicwall/ISA on DMZ and forward all requests based on rule to your web servers.

2 or 3 would be good.

HIH
Yorgy

_____________________________

Life is a zoo in a jungle!

(in reply to charlieit)

Post #: 2