Intranet and Internet Security for ASP

[Ian Hossie]

Hi all,

I am currently working for a client that wants to be able to
set up a web page that can be accessed from within a corporate intranet
and from the Internet simultaneously. From outside a firewall. As well, this
page will be updating a database within the firewall.

Now, this is my assessment of the situation and the requirements:

In order to be able to do this, I need to have a webserver set up outside
the firewall that can log into the firewall, and then access the database.
Using ADO.

How exactly am I supposed to do this? Oh, and within a month's time. With
ASP.

Any suggestions are appreciated.

Thanks,

Ian Hossie

"I have come to the conclusion that at least half the world is completely
and utterly insane. That, and it's **** hard to identify which half. "

[Savage]

I would need to know your network setup to be sure, but there are many questions
that arise. It is doughtful that a network admin would allow a path to the
internal network. They are very secure in the firewall setup.

The best choice would be a web server with I external IP and 1 internal IP.
This requires two nic cards. The internal will have access to the internal
database. The external will be the internets web access. This will allow
for little risk if setup correctly. Since the server has two nics the server
will be able to cross to the internal machine. The internal nic should be
set up to blook all trafic that is not internal.

This is only one way. Discuss it with the network admin to figure out the
network layout.

The site should be password protected.

Hope this is helpful.
Savage

"Ian Hossie" <hossiid@yahoo.com> wrote:
>
>Hi all,
>
> I am currently working for a client that wants to be able to
>set up a web page that can be accessed from within a corporate intranet
>and from the Internet simultaneously. From outside a firewall. As well,
this
>page will be updating a database within the firewall.
>
>Now, this is my assessment of the situation and the requirements:
>
>In order to be able to do this, I need to have a webserver set up outside
>the firewall that can log into the firewall, and then access the database.
>Using ADO.
>
>How exactly am I supposed to do this? Oh, and within a month's time. With
>ASP.
>
>Any suggestions are appreciated.
>
>Thanks,
>
> Ian Hossie
>
>"I have come to the conclusion that at least half the world is completely
>and utterly insane. That, and it's **** hard to identify which half. "
>
>
>
>
>
>
>

[Ian Hossie]

"Savage" <vondras@enteract.com> wrote:
>
>It is doughtful that a network admin would allow a path to the
>internal network. They are very secure in the firewall setup.

To put it mildly. The dba I work with suggested that it's a little like
asking the guards if it's okay to build a little bridge across the moat.
And drill a tiny little hole in the castle wall.


>
>The best choice would be a web server with I external IP and 1 internal
IP.
>This requires two nic cards. The internal will have access to the internal
>database. The external will be the internets web access. This will allow
>for little risk if setup correctly. Since the server has two nics the server
>will be able to cross to the internal machine. The internal nic should be
>set up to blook all trafic that is not internal.
>
>This is only one way. Discuss it with the network admin to figure out the
>network layout.
>

Thanks, this does help to some extent. At least in the sense that I have
another option I can present to my manager.

I was also thinking of setting up something to use email for data updates,
but that's something different.

Thanks,

Ian Hossie