We have been using a reporting application called Crystal Reports Server internally for several months. What we want to do is provide a link off of our website to a server running the application, while at the same time enabling secure access to the server inside our network that hosts our database.
We have a second IP address which we can use and obviously link to from our website. I assume that simply placing this application server outside of our firewall and then using its other ethernet port to connect to our network would be considered a security worst practice, even with server anti-virus software and the server locked down.
I'm not very knowledgeable about networking/security. What would be an easy and secure approach to this issue?
We have external webhosting. All of our servers are running Windows Server 2003. It is an SQL database. I have some ability to acquire additional resources, e.g. an additional firewall.