We have a company product management solution that stores sensative customer information and compnay senstative information. The box is also to provide portal access via browsers to customers, allowing them to log and look up their calls, etc. We originally did not put this box in a DMZ b/c it had to be joined to our internal domain and b/c had sensative information. We are at the phase where we need to publish the portal as a website(IIS is on the box) in order for customers and remote employees to gain access to the portal. I am trying to figure out the best network configuration(location) for this box. Yes the box is running IIS, has a published www site, ftp, and virtual SMTP and SQL 2005 as the databse store for the management product. The box is presently located within our LAN behind our firewall.
1. My plan is to just leave it within the network and implmenent SSL for access via https.
Any other ideas/recommendations?