GUIDLINES: i need a solution so customers can send files. The files are less than a MB. This solution needs to be secure & somewhat retard proof. Customers should not be able to access other customers files. it also needs to prompt them for a username & password. impossible for customers to access anything else on our lan.
MY IDEA/OUR CURRENT SETUP: we have two branch offices that are connected via IPSEC tunnel over dsl. we don't host our on website. i was thinking about setting up Redhat on a machine and plugging it into the DMZ port on the firewall. The redhat machine would be running SFTP. Clients could connect to the machine using Winscp & drag and drop their files into their folder.
QUESTIONS/ALTERNATIVES: i have looked at alternatives and the cost is $1250.00 to $4500.00. These are good but i would have to wait until next year since i have not planned for this in this years budget.
1. Are these statements true about a DMZ. DMZ= hosts in the dmz may not connect to the internal network but may connect to the external network. hosts in the dmz are not filtered by the firewall from outside traffic.
2. If they are true should i put a firewall between my redhat box and my dmz port on my firewall?
3. Will we be able to access the redhat box to retrieve the files from our internal network?
4. Is this even a good idea or am i a complete idiot and need to take a totally different approach?
please give ideas, suggestions, pros & cons. thanks
MY IDEA/OUR CURRENT SETUP: we have two branch offices that are connected via IPSEC tunnel over dsl. we don't host our on website. i was thinking about setting up Redhat on a machine and plugging it into the DMZ port on the firewall. The redhat machine would be running SFTP. Clients could connect to the machine using Winscp & drag and drop their files into their folder.
QUESTIONS/ALTERNATIVES: i have looked at alternatives and the cost is $1250.00 to $4500.00. These are good but i would have to wait until next year since i have not planned for this in this years budget.
1. Are these statements true about a DMZ. DMZ= hosts in the dmz may not connect to the internal network but may connect to the external network. hosts in the dmz are not filtered by the firewall from outside traffic.
2. If they are true should i put a firewall between my redhat box and my dmz port on my firewall?
3. Will we be able to access the redhat box to retrieve the files from our internal network?
4. Is this even a good idea or am i a complete idiot and need to take a totally different approach?
please give ideas, suggestions, pros & cons. thanks