Out staff access remote 3rd party hosted business application from PC's in our corporate network. I am not from a network background, but access to this application server isnt "public facing", i.e. its an application server in the 3rd parties private network that isnt exposed to the Internet. Am I right in thinking no firewall rules would need to be configured from our side to acheive this access? And they have to open up their firewall to allow access to their application server and our users? I want to establish what communications are open between the 2 networks, and whether the connection exposes any risk to our network? As a general rule I assume there would be no risks to an internal network in such a setup? or what best practices we should be checking to ensure there are no risks by establishing this connection. Please keep answers low tech management freindly.