Forum Discussion
NimbostratusDo you think any of the given options to locate web server will work for organization? If yes then which option will you choose and why? Justify your
Suppose you have got job as network administrator in an organization xyz which is handling a huge data which needs security. You have an internal network protected by a firewall. The firewall protects your internal network from external attacks. The Organization also has a well secured web server and there are three options to locate this web server a) inside the internal firewall, b) outside the internal firewall or between the internal firewall and external firewall.
1 Reply
David_LarsenEmployee
I would say any of these would work and would depend on where your F5 is. In my experience the best option is to not have a firewall between the F5 and the webserver. It makes troubleshooting much simpler and occasionally firewalls will detect health monitors as DOS attacks and then the web server is taken out of service.
Also if you are running ASM on the F5 then put the web server right behind the F5 on the external edge if possible. The F5 is rated as a firewall and adding another firewall into the mix is not adding any protection but making troubleshooting connectivity and application issues more difficult.
Good luck.
