My expertise is in web development, but now I'm responsible for networking, and I'm in over my head.
We have created a web server (running ASP.NET on IIS 7) on a dedicated hosted machine outside our company firewall and in a different city. The web site on this server has to exchange data with various databases, SQL Server, AS/400 DB2 and Oracle, that live within our firewall. We also have set up an Amazon E2 Linux server running Oracle WebLogic to host a REST web service app, and it must exchange data with the in-house Oracle servers. The web server also will use the REST services on the WebLogic server.
How do I secure and encrypt all the connections between these three data end-points?