I have an PLC and HMI & SQL Server sitting on an isolated network (on Premis) and I would like to securely connect this to AZURE Cloud with out exposing the whole control system to internet.
I have with my demo system and got it working but my SQL server had to had to be plugged into the internet router. THis is using Transactional SQL replication from MSSQL server to a CLOUD SLQ server (works well) .BUT! Plugging directly into internet in the production system is a No No from Company IT )as machine os, patching, antivirus, etc doesn't meet company spec and machine is owned by project not IT yada yada yada).
Due to a remote location the only internet comes for IT, we can NOT "3G route it" or use other hick solutions.
What tools/Network'y architecture do I need to put in (gateways, firewalls, tunnels, vpns, 2nd nics ect) to convince IT have a valid case and to get IT to take this seriously.
Alternatively I can jump up and down and make a lot of noise with IT we will lose control of everything and they will F### it up as usual and 3 years down the line we will have to start again.
My initial thoughs is MSQL - Replicate to a LocalGateway MSQL machine that then that machine replicates to Cloud via internet. This gives protection to the production SQL server, But this seems complex and needs loads of licenses and hardware.
I have with my demo system and got it working but my SQL server had to had to be plugged into the internet router. THis is using Transactional SQL replication from MSSQL server to a CLOUD SLQ server (works well) .BUT! Plugging directly into internet in the production system is a No No from Company IT )as machine os, patching, antivirus, etc doesn't meet company spec and machine is owned by project not IT yada yada yada).
Due to a remote location the only internet comes for IT, we can NOT "3G route it" or use other hick solutions.
What tools/Network'y architecture do I need to put in (gateways, firewalls, tunnels, vpns, 2nd nics ect) to convince IT have a valid case and to get IT to take this seriously.
Alternatively I can jump up and down and make a lot of noise with IT we will lose control of everything and they will F### it up as usual and 3 years down the line we will have to start again.
My initial thoughs is MSQL - Replicate to a LocalGateway MSQL machine that then that machine replicates to Cloud via internet. This gives protection to the production SQL server, But this seems complex and needs loads of licenses and hardware.