I currently am faced with a troublesome infrastructure
dilemma.
We have some real-time data that resides on an SQL server
in our intranet. This data is queried and updated by users
via a web server that is in our DMZ. Queries are sent from
the web server in the DMZ to the SQL server and data is
provided from the SQL server back to the web server based
on the queries. This obviously requires a two way
connection through the firewall which negates the reason
for the firewall in the first place. The question I have is
what is the most secure network design for these systems?
How do you provide access to real-time sensitive data in a
secure environment? Financial, medical and other government
agencies provide this kind of real-time information on a
daily basis so I know there are ways to do what we need.
I'm just not sure how yet.
Any suggestions would be greatly appreciated.
