Hello David,
if the server _must_ remain in the internal network segment, then I
would suggest putting a CheckPoint firewall in between with App
Intelligence turned on to protect it from diverse HTTP (app layer)
attacks. I think CheckPoint can even act in a similar way as a proxy.
Regards,
Rodrigo.
On 21/02/06, David Moneo <dummycerberus@gmail.com> wrote:
Hello everybody,
my organization has an Apache web server for world wide access in the
DMZ. Right now, another department want to made their own IIS server
(installed on their private LAN) available from the Internet. How can
I manage that kind of access without moving the IIS to the DMZ? Could
I use a reverse proxy or something like that?
Thanks in advance and best regards
DM
---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
