leerlp
asked on
Securing a website
We are going to be moving a website out onto the internet and are trying to determine the best way to secure it. The site will consist of a web server that is grabbing data from a SQL database server from within the network. We are currently using a PIX515E firewall with everything from the outside denied except our e-mail spam service. Would we be better off from a security standpoint utilizing the DMZ interface on the PIX or forwarding incoming port 80 requests to the webserver directly?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Its always better to have the web server in DMZ as lrmoore mentioned....Then its up to you how comfortable you are with the various resources to secure the server n communication between WEB Server & DB server...