How-to setup an application server in the cloud

I want to setup an application server in the cloud (private cloud) to function as my anti-virus server.  Users will connect to this server to install the A/V program and will receive updates from this server in the background on a scheduled basis controlled by the server.

The server will most likely be Windows 2008R2 or possible Window 7 Professional.

Is there a simple 1-2-3 process I can use to accomplish this setup?

Thank all.
miles575Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

akhalighiCommented:
well .. usually the ONLY thing you need is a machine ( probably a virtual machine in your private cloud) . It'd be better to use a server edition ( e.g. server 2008 standard) . the rest of the steps comes from your anti-virus product ( e.g. McAfee , Kaspersky , etc ) , you load your anti-virus management software to your new server , update it and start the deployment/management from the central server to all workstations.
0
miles575Author Commented:
Akhalighi:

Thanks for your reply.  Your solution is fine for internal users, we want external users to be able to access and use this application.
0
akhalighiCommented:
External users ... what type ? users from Anywhere over internet or from VPN ?
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

miles575Author Commented:
The external users could be from anywhere.  A VPN is a possibility; restricting access by Public IP Address can also be considered.
0
David Johnson, CD, MVPOwnerCommented:
The external users could be from anywhere. Then it is PUBLIC cloud not private cloud, using a vpn makes it private. Being in the 'cloud' simply means that it is accessible (public - everywhere) (private - within your network)
0
miles575Author Commented:
ve3ofa:

Thank you.  I guess this is really a HYBRID Cloud environment: self hosted on our servers (internal) but allowing user access from the outside (public).

Either way: can you provide a suggestion to help me make this happen?
0
akhalighiCommented:
hmm ... this is a strange setup but anyways ... if you want to manage external users over public , then you will need to allow access ( through your firewall in your datacentre) , so that the traffic gets forwarded to Anti-Virus management server . you also will need to create a public DNS for this server e.g. AV.YOURCOMPANY.COM .

For firewall setting requirements , you will need to refer to your AV product and find out  which port or ports are being used.
0
akhalighiCommented:
for example is AV management server listens on TCP port 5555 and 5556 ; then you will create a public DNS ( e.g. AV.MYCOMPANY.COM) , you will need to assign a public IP address
to this DNS name (e.g. 66.66.66.66)  . this will be from the range of public IP addresses that you have from your
Internet vendor on your private/public cloud.

once that's setup ; you configure your firewall to allow TCP Port 5555 & 5556 for this particular IP address  (66.66.66.66) . Traffic should be also forwarded to your AV server internal IP ( e.g. 10.0.1.1) .

a better method is to use DMZ in your environment ; same concept and same rules as above but in a DMZ  setup , this particular server stays on a different zone ( not the same zone as other servers ) , this is a better security practice.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
miles575Author Commented:
akhalighi:

Some forward progress, thank you.

I especially like your suggestion about setting this up in a DMZ; very good thought.
0
Seth SimmonsSr. Systems AdministratorCommented:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Cloud Computing

From novice to tech pro — start learning today.