Planning to build a webserver
-
I have been everywhere on the net with this question and hopefully you guys can help lol..
To make a long story short, I'm planning to build a Webserver for churches in our area who can't afford to pay premium prices for a webmaster and I'm going to base it from home. My house will have two cable modems, one is for home broadband and the other is business class. For my personal computers I want to use the home broadband and for the WebServer I want only the business class cable to touch it.
Basically I want the server I just bought (Dell Poweredge 2550 w/ 2gb ram) to accept both internet connections and then distribute accordingly to my computers. On paper this is what I have…
--> ISP MODEM ---> Pfsense (split)
network #1 DHCP capability ---> Switch --->PersonalComputers
network #2 DMZ ---> WebServerI figure I'll put my personal computers on their own switch and give my webserver DMZ. My issue is that I want all the computers to filter through the one box that has Pfsense installed, can Pfsense do this?
My second question is how would I go about adding a FileServer (Poweredge 6650) that both my home network AND Webserver can touch?
Thank you for any help and sorry for the lengthy explanation.
-
What you want to do is possible.
You shoudl probably start reading the howto's and the faq and the guides on how.some links:
http://forum.pfsense.org/index.php/topic,7001.0.html -
Awesome.. No offense but I've been on quite a few boards and read through alot of how-to's and then realized an hour to two hours later that it's not possible so I just wanted to make sure first lol. And yes, now I will start reading in depth into the tutorials.
Thanks again! =)
-
My second question is how would I go about adding a FileServer (Poweredge 6650) that both my home network AND Webserver can touch?
You may as well stick it in the DMZ. If you're allowing the webserver to access it then if your webserver is compromised the file server is probably going to be toast anyway ;)
(No, I don't think it's a good idea)
-
@Cry:
My second question is how would I go about adding a FileServer (Poweredge 6650) that both my home network AND Webserver can touch?
You may as well stick it in the DMZ. If you're allowing the webserver to access it then if your webserver is compromised the file server is probably going to be toast anyway ;)
(No, I don't think it's a good idea)
:D ha… Networking 101 just learned. Don't connect unnecessary stuff to the webserver. Thanks for the heads up. So I guess whenever I need something I just use SFTP or SCP or RSYNC over SSH to move files back and forth.
-
I'd go with rsync over SSH. Rsync will allow you to keep the webserver updated with changes on the fileserver and as you should be using SSH to admin it anyway you're not opening up any new holes.
