I've got some workstations with critical informations which I would like to isolate from Internet. Currently, their users don't have any network connexion and use separate computer for internet surfing.
I'd like to simplify this, and use virtualisation instead.
I've thought of XenApp, and publish a browser such IE8, Firefox or whatever, which will run on a server inside the DMZ.
Unfortunatly, I don't have any experiences with Citrix.
1- Is this a good idea ? Will the security be safe enough ?
2- What about the user experience ? (e.g. : the user click on a hypertext link, will XenApp intercept it and run it in the streamed browser ?) Of course, I'd like a solution as transparent as possible for the users...
Thank you for your opinions,