[Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 443
  • Last Modified:

I need a free or inexpensive proxy server to connect a satellite facility to the main location, that allows SFTP traffic.

I have a satellite facility connected to the main location by MPLS.  They use a proxy located in the main facility to get to the internet.
We are implementing a new scanning solution that transfers the scans via sftp to an offsite vendor.
The solution works great from the main location, but fails from the satellite.
Out existing proxy is Microsoft ISA Server 2004, which is old, I know.
I am not an expert in this topic, but I am the one that has to take care of.
I cannot redesign the entire network.  We have certain things dictated by our parent company!

Any advice would be appreciated,
Steve
0
RSchalhoub
Asked:
RSchalhoub
1 Solution
 
kevinhsiehCommented:
Does all traffic from the satellite office go through the main office and the ISA 2004 server? If that is the case then you need to configure the ISA 2004 server to allow traffic from the remote office to the SFTP server over TCP port 22.

Isn't anyone worried that the software securing your network is 10 years old and that support, including security updates end either in October 2014 (ISA 2004 Standard SP3) or April 2015 (ISA 2004 Enterprise SP3)?

http://support.microsoft.com/lifecycle/?p1=2108
0
 
Jackie ManCommented:
0
 
RSchalhoubAuthor Commented:
Kevin,
We do not use the ISA Server for security necessarily.  It is basically just to proxy web traffic from other office.
We have a security infrastructure supplied and supported by our parent company
I am going replace this proxy, which brings me to my question here.

Jackie,
I have been told SFTP


Steve
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
Sanga CollinsSystems AdminCommented:
Zentyal server is free and uses linux squid proxy. Very robust and versatile.
0
 
Jackie ManCommented:
You need to create a custom protocol definition for the FTPS as shown info in the link below.

http://www.isaserver.org/blogs/pouseele/isa-corner/solving-the-secure-ftp-dilemma-with-isa-server-2004-and-2006-35.html
0
 
shalomcCommented:
Just my 2 cents:

sftp and ftps are not the same thing.

sftp is really an implementation of ssh, and it does not work well with proxies, particularly so with ISA.
If you can, reconfigure your settings to not route sftp thru ISA.  
Otherwise, use an upload buffer:  place a server in your DMZ ,  upload to it from your application in a supported way, and have a scheduled job that uploads via sftp to the offsite vendor.
0

Featured Post

Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

Tackle projects and never again get stuck behind a technical roadblock.
Join Now