Access to internal resources

["Nathan Casey" <ncasey () sonoma-county org>]

We have SQL data which can currently be viewed on our internal Intranet by select employees. Access to the SQL data 
site is controlled by NTFS permissions.
Now, we are required to make the same SQL data available over the internet to the same group of people that have 
internal access.
Our external web server is in a PIX DMZ separate from our internal network. Would it be possible to use MS ISA server 
to act as a reverse proxy to allow external users access SQL data in a browser over the public internet?

Internet Router
(Public IP)
|
|
PIX FIREWALL
|
|
Web server
|
|
PIX FIREWALL
*internal Network*
|
|
ISA SERVER
|
|
SQL SERVER DATA 
 
 
The current intranet sight is just a web page that allows users to search
a records DB containing real estate info (http://intranet/houses). The
users that access this page have only read access to the table containing
the info.
When the user accesses the page they are prompted for a username and
password to access the information (Domain username and password).
They now need to be able to access the same info from the internet in the
same manner. Only the users that can access the intranet site should be
able to access the internet site (www.sonoma.com/houses) and the SQL data.
Would the web server in the PIX DMZ point to the ISA server as the
location of the SQL DB, and then forward the request to the SQL server?
Thank you for the advice!

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards