I have a question regarding security in this scenario:
In the DMZ I have an server hosting my Web application. I'm using HTTPS between the user/browser and my web application (using certificate).
My web application is supposed to communicate with a service behind the firewall (inside the domain) hosted in IIS 7.
I'm using wsHttpBinding between my web application and the WCF-service.If I have this security configuration everything works fine:
<binding name="WSHttpBinding_ServiceLong" closeTimeout="00:01:00" openTimeout="00:01:00" receiveTimeout="00:20:30" <br/>
View Complete Post