"Reverse" proxy available. Any need to put web servers in DMZ ?
From: Marlon (marlon-nospam_at_hotmail.com)
Date: 06/16/05
- Next message: José Luis: "Protecting CD copy"
- Previous message: Susan: "Automatically updated?"
- Next in thread: Phillip Windell: "Re: "Reverse" proxy available. Any need to put web servers in DMZ ?"
- Reply: Phillip Windell: "Re: "Reverse" proxy available. Any need to put web servers in DMZ ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 16 Jun 2005 11:43:50 -0700
This is the discussion here:
I have ISA 2004 setup as a workgroup in the DMZ successfully publishing my
OWA 2003.
I have a web server (win2003, IIS6.0) that pulls data from a SQL 2000 db.
Such web server is currently in the "internal" network. Web server requires
no authentication.
In my view it makes more sense keep such web server as is in the internal
network and publish it via "ISA" to take advantages of HTTP filters and
other things ISA offers.
Instead, do you see any advantage security wise of moving such webserver to
the DMZ instead ? That will require a whole in the firewall to allow traffic
to the SQL db which resides in the internal network.
If you can help, advise on pros and cons of placing such web server in the
DMZ instead of keeping ISA->Web server(Internal).
- Next message: José Luis: "Protecting CD copy"
- Previous message: Susan: "Automatically updated?"
- Next in thread: Phillip Windell: "Re: "Reverse" proxy available. Any need to put web servers in DMZ ?"
- Reply: Phillip Windell: "Re: "Reverse" proxy available. Any need to put web servers in DMZ ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
