LinuxQuestions.org
Visit the LQ Articles and Editorials section
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 04-08-2008, 07:18 AM   #1
Boser
LQ Newbie
 
Registered: Mar 2008
Location: Stockholm
Posts: 1

Rep: Reputation: 0
Lightbulb How do I recommend a good server solution


I have been asked to come up with a suggestion about how to implement a website for an organization.

The website itself is fairly small, only about static 150 pages. Of these pages about 60 should be for internal use only and the rest should be public. The pages are updated rarely.

The organization has about 900 members and all of them are blessed with fixed class A IP address organized in 8 subnets. The organization can make moderate investments but has next to zero IT administration resources and knowledge.

My idea is to propose a Linux based solution.

The website itself should be fairly straight forward with Linux and apache.

For the internal pages I have an idea that I could use a firewall to filter the web pages based on the users IP address. Since I know the addresses of all members I could use these as key to the internal pages thereby cutting away the need of user-ID/password or something similar for the members to use to access the internal pages.

Preferably it should be a bastion server containing all the functions.

The workload will probably be fairly moderate so a solution with a fairly high end server using Xen to separate web server and firewall, maybe even put a proxie server in between, cashing the pages (that should bump up security), should also be possible.

Maybe there is a much easier way to implement this? I don't want to shoot myself in the foot by suggesting something that is difficult to implement. If I do, I'm sure someone will decide we should go for an IIS/ISA solution even if it will be horribly expensive.

Also, any suggestions about potential pitfalls are appreciated.
 
Old 04-08-2008, 07:42 AM   #2
billymayday
Guru
 
Registered: Mar 2006
Location: Sydney, Australia
Distribution: Fedora, CentOS, OpenSuse, Slack, Gentoo, Debian, Arch, PCBSD
Posts: 6,678

Rep: Reputation: 122Reputation: 122
I'm no apache guru, but you should be able to restrict access locally at the directory or virtual host level within apache. Something like

Code:
  Order Deny,Allow
  Deny from all
  Allow from 127.0.0.1
  Allow from 192.168.1
  Allow from <remaining 7 subnets>
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Does anyone have a good solution/todo list for failover cluster - e-mail server? SEGStriker Linux - Server 2 02-20-2008 06:54 AM
Any good fax server to recommend? tkt Linux - Newbie 1 06-16-2006 11:27 PM
Can you please recommend a good distro? ajd344 Linux - General 15 04-28-2006 05:02 AM
Recommend a good BitTorrent client, and a good CD ripper? audiorevolution Linux - Software 6 06-07-2005 06:36 AM
recommend a good easy to use FTP server Chooco Linux - Networking 9 06-21-2002 12:16 AM


All times are GMT -5. The time now is 11:29 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration