0

We have a web server on a DMZ that needs to read/write to a single file location on our Server 2003 Domain. What is the best way to do this?

Beep beep
  • 1,833
  • 2
  • 18
  • 33
  • Read / write using what protocol(s)? Windows share? FTP?... – squillman Mar 24 '11 at 20:57
  • Depends on the requirements, it would be better to schedule data pickup from the server using some scheduled script FROM the internal network. In essence, don't allow access from within the DMZ to the internal LAN. – Vick Vega Mar 24 '11 at 21:02
  • @Squillman - I don't know, that's why I'm asking. – Beep beep Mar 24 '11 at 21:35
  • @Vick - Scheduled pickup might work ... however, if for some reason we needed to access it directly, any suggestions? – Beep beep Mar 24 '11 at 21:40
  • @Jess - Lock down the firewall to allow access ONLY one specific machine, create a LOCAL username on that server and allow access to only one specific folder. – Vick Vega Mar 25 '11 at 23:45

2 Answers2

1

You could use webdav over ssl giving only the computer account access to the file. Using webdav you can map a drive to the SSL location of the server.

Of course there are still other things to take into account like firewall configs, what you do with the file (if anything) when you download it locally, if the machine's are both members of the same domain (or trusted), etc.

BoxerBucks
  • 1,374
  • 1
  • 9
  • 19
1

Depends on the requirements, it would be better to schedule data pickup from the server using some scheduled script FROM the internal network. In essence, don't allow access from within the DMZ to the internal LAN.

Vick Vega
  • 2,398
  • 16
  • 22