Advice with hosting web servers over VPN
I have a project at work which we are all in debate over and wondered if we could get some advice from the experts here.
Currently we install webservers running our webcode into the physical network at our customers sites.
However, recently we have had requests to host a couple of these boxes ourselves. We have a full-rack in a local datacenter and can get more if needed, so space and BW are not a problem. What is a problem though is the logistical nightmare of each server needing a seperate and probably different VPN software connecting the box from the datacenter to their network.
A quick reason for this.... The webserver needs to talk to an Oracle server which will be situated on their network, and this needs to be secure communication.
So, what we need goes a bit like this:
Internet User ---> Webserver --->VPN --->Oracle server
and back.
Now the multiple webservers is not a problem. My solution would be a fairly powerful box with a load of VPSs each with their own dedicated IP, going through some kind of cisco router.
What we seem to be stuck on is seperating the route the traffic will take in terms of.. from the internet (SSL) to the webserver, and then from the webserver via VPN to the Oracle server (using a different NIC?) and then back.
What wouold be the best way to implement this type of scenario. Does anyone have experience with this?
Thanks in advance....
