IIS 7 and Above
Having additional web server in DMZ - ASP.net
Last post Jul 07, 2018 10:37 AM by jnv
Jul 04, 2018 07:06 AM|jnv|LINK
We have an ASP.net 3.5 web forms based web application. So far we had this application on an App server facing internet. Our security team is asking us to have one additional Web server in DMZ and put this application server behind the DMZ. I had few queries.
a. If we have a web server forward request to our application, can the session state management work. We have our inproc session management.
b. Will there be any performance impact? Are there any precautions that we need to take care of?
Jul 05, 2018 06:56 AM|deepakpanchal10|LINK
I can see you had asked several questions.
If your web application only hosted on one web server means not using multiple web server then session will work without any issue.
In general condition, there will be no or very less impact on performance.
I agree with your security team for creating a DMZ.
DMZ is a physical or logical subnet that separates an internal local area network (LAN) from other untrusted networks, usually the internet. External-facing servers, resources and services are located in the DMZ. So, they are accessible from the internet,
but the rest of the internal LAN remains unreachable. This provides an additional layer of security to the LAN as it restricts the ability of hackers to directly access internal servers and data via the internet.
Jul 07, 2018 10:37 AM|jnv|LINK
Thanks Deepak. We will ask the customer to configure it accordingly