Link to home
Start Free TrialLog in
Avatar of roy_batty
roy_battyFlag for United Kingdom of Great Britain and Northern Ireland

asked on

Mixing DMZ and LAN Servers on a single HYper-V host

I am considering replacing a customers servers with a hyper-v based solution. They have 3 servers including a webserver which currently sits in a DMZ and a SQL server which sits on the LAN and is used my the webserver.

I would like to move these 2 servers onto one hyper-v host but on separate virtual switches linked to separate NICs.

The 3rd server I would like to add is a RDS server.

My questions is what is the best place for the webserver? Is it a security risk putting it on the same hyper-v server?
ASKER CERTIFIED SOLUTION
Avatar of Cliff Galiher
Cliff Galiher
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Avatar of Philip Elder
Philip Elder
Flag of Canada image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of roy_batty
roy_batty
Flag of United Kingdom of Great Britain and Northern Ireland image

ASKER

So that's a probably not and a yes go for it. Any other points to add to this discussion?
SOLUTION
Avatar of Philip Elder
Philip Elder
Flag of Canada image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of roy_batty
roy_batty
Flag of United Kingdom of Great Britain and Northern Ireland image

ASKER

The webserver will need to connect to sql server on the production side. Please tell me more about this virtual edge?
Avatar of Philip Elder
Philip Elder
Flag of Canada image
You can download a copy of SOPHOS UTM from their Web site. It's an ISO that can be mounted in a VM's optical drive. Boot it, install it, and configure the edge services. The product is not free but works quite well.

Make sure your setup is configured against and tested for SQL Injection attacks.
Avatar of roy_batty
roy_batty
Flag of United Kingdom of Great Britain and Northern Ireland image

ASKER

OK I will take a look.

I have also come across 5Nine Cloud Security for Hyper-V Free edition which seems very easy to use.

Does anyone have an opinion about this product?
Avatar of Philip Elder
Philip Elder
Flag of Canada image
They have some pretty good things going on via folks I've spoken with though I've not worked with any of their products firsthand.
Avatar of roy_batty
roy_batty
Flag of United Kingdom of Great Britain and Northern Ireland image

ASKER

Thanks for advice on this guys