General discussion

Locked

VPN SSL

By dlima ·
VPN SSL

I need to deploy a solution for the following scenario. And please only reply if you have direct experience with this type of issue.

I have a visual basic data base which users accsess through a dot.net browser application on our internal LAN.
We would like to give them access to that data base via a link on our internet site. You know kind of an employee portal that links back to our internal machine that runs the data base.

I am thinking that at VPN with SSL certificating is the way to go.
Can anyone confirm this? And also because I have never setup a VPN, how do I do this.

On my internal LAN I have 130 users/nodes. Meanwhile externally or remotely I would want to give access to approximately 50 users at anyone time.

I have a NT 4.0 svc pk. 6a Primary domain controller for LAN log on.
The data base runs on a Server 2000 machine.

Any ideas?

Thanks

This conversation is currently closed to new comments.

3 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

by Curacao_Dejavu In reply to VPN SSL

http://tinyurl.com/yvo9

btw its SSL with ipsec or L2tp.

preferable a w2k for security purposes you may check out the isa server (for firewall).

I heard you can do it with proxy 2 of nt too,
you didnt specify how you are connecting to the internet, or does the machine has an internet ip.

www.microsoft.com/isa

Leopold

sorry , i am not feeling to well to go into details

Leopold

Collapse -

by Curacao_Dejavu In reply to

go to searchnetworking.com
and search on a white paper called "enterprise secure remote access.
it's published on the 4th of november 2003.

it's the one that you are looking for.

Leopold

thanks for the email.

Collapse -

by cw In reply to VPN SSL

It really depends on your network hardware, but the best way to do this is to create a VPN end tunnel that your clients access remotely, and then have them open the URL from inside the network, through the tunnel, ideally to a private IP address on the Database Server. If you are using Cisco network devices, preferablly a PIX, but a router running the Firewall Feature set will work, you can issue the clients the Cisco Secure VPN client, which is an easy way to provide DES1 or DES3 encryption, and dynamic key exchange for authentication. Clients simply install the easy to install VPN client, click an ICON, and are connected to your network. Then they open either a private IP address in their Web Browser, or a URL if you are running internal DNS.

Hope this helps

Chris Weber CCDP

Back to Security Forum
3 total posts (Page 1 of 1)  

Related Discussions

Related Forums