Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Web access to web server in private LAN

from [Jasun Tate] Network Security [Permanent Link]
Subject: RE: Web access to web server in private LAN
Date: Wed, 22 Feb 2006 12:02:05 -0800 
I agree with Dixon, Its gonna be a nightmare and a oxymoronic (if that's
a word) security implementation. But depending on the Networking
environment you have it is possible to set the IIS server as part of a
VLAN which is encluded on the DMZ. I would try Dixons move to convince
upper management to get the box put in the DMZs location.

Jasun Tate
Sr. Security Administrator
Network Operations-ICW Group
Office #858-350-2459
  

~~INVEST IN LOSS~~ Chen Man Ching

-----Original Message-----
From: ROB DIXON [mailto:RDIXON@workforcewv.org] 
Sent: Tuesday, February 21, 2006 5:36 AM
To: dummycerberus@gmail.com; security-basics@securityfocus.com
Subject: Re: Web access to web server in private LAN

could you not have it in the DMZ and still be in the same room as the
other department?
it sounds like you need some support from some higher up to enforce the
use of the DMZ for outward facing systems.
im sure we could find some horror stories for you to pass on to him/her
if needed. :-)


Robert L. Dixon,  CSO
CHFI A+
State of West Virginia's 
West Virginia Office of Techonology
Infrastructure Applications
Netware/GroupWise Administrator
Telephone: (304)-558-5472 ex.4225 
Email:rdixon@workforcewv.org

"David Moneo" <dummycerberus@gmail.com>  >>>

Hello everybody,

my organization has an Apache web server for world wide access in the
DMZ. Right now, another department want to made their own IIS server
(installed on their private LAN) available from the Internet. How can
I manage that kind of access without moving the IIS to the DMZ? Could
I use a reverse proxy or something like that?

Thanks in advance and best regards

DM

------------------------------------------------------------------------
---
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting
experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity
Planning,
Computer Emergency Response Teams, and Digital Investigations.

http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
---



------------------------------------------------------------------------
---
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting
experience. 
Tailor your education to your own professional goals with degree 
customizations including Emergency Management, Business Continuity
Planning, 
Computer Emergency Response Teams, and Digital Investigations. 

http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
---



#####################################################################################
Warning: 

This email and any files transmitted with it are confidential and intended 
solely for the use of the individual or entity to which it is addressed. If you 
are not the named addressee any review, dissemination, distribution or 
duplication of this e-mail is strictly prohibited. If you have received this 
email in error, please let us know by e-mail and delete it from your system. 
Please note that any personal views or opinions presented in this email are 
solely those of the author and do not necessarily represent those of the 
company.

Thank You.
#####################################################################################

---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Tailor your education to your own professional goals with degree 
customizations including Emergency Management, Business Continuity Planning, 
Computer Emergency Response Teams, and Digital Investigations. 

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  vbscript security in the Browser, Juan B
Next by Date:  Re: Linux firewall in Bridged mode, Rick Zhong
Previous by Thread:  Re: Web access to web server in private LAN, ROB DIXON
Next by Thread:  Windows Vista L2TP??, Bob Arthurs
Indexes:  [Date] [Thread] [Top] [All Lists]