We have an FTP Server that We now need to have the outside world to have access to.
I can either:
open up port 21 on the PIX and point an outside address to the inside address
put the server in the DMZ and then point a outside address to a DMZ Address.
People in the company still need access to the server.
I tried putting the server in the DMZ, but now it cannot authenticate the users on our network that have permissions on on.
If I move it back to the intranet, then wouldn't that give someone who may have compromised the server access to other server on our intranet via port 21?
How would I do the Authentication if I wanted to keep the server in the DMZ?