We have a new web app/portal running on IIS/Win2k server that queries a SQL
DB on Win2k3 server.
We are currently testing the web app on our private network but we are
planning on giving access to the web app/server to our clients.
I will probably add an ftp server to the IIS server.
How would you go about securing the private side of the network while
providing access to the web server?

Thank you.