Welcome to ServerForumz.com!
FAQFAQ      ProfileProfile    Private MessagesPrivate Messages   Log inLog in

Network security

  
   Windows Server (Home) -> Windows Server Security RSS
Next:  How secure is EAPOL registery key?  
Author Message
Andrei

External


Since: Nov 08, 2003
Posts: 8



(Msg. 1) Posted: Thu Oct 23, 2003 12:53 pm
Post subject: Network security
Archived from groups: microsoft>public>windows>server>security (more info?)
Hi everybody!

A company has 10 workstations, a server and a switch to which they are
connected.
The task is to modify the network so that all workstations could go on the
internet, and traveling employees could connect to the office network via
VPN.

There are two different solutions:

1. To bay a DSL/VPN router (Linksys for example), connect it to the switch
and configure it to complete the task.

2. To connect the server to Internet with a new NIC. Then, configure the
server to accept incoming VPN connections and make it an internet gateway
for the users on the office network.

The question is which way is better and secure, and why?
Money are out of the question.
Please, if you are have any thoughts about it, please, drop a line!

Thank you!
Andrei.

 >> Stay informed about: Network security 
Back to top
Login to vote
Keith W. McCammon

External


Since: Dec 02, 2003
Posts: 38



(Msg. 2) Posted: Thu Oct 23, 2003 1:05 pm
Post subject: Re: Network security [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
> 1. To bay a DSL/VPN router (Linksys for example), connect it to the switch
> and configure it to complete the task.
>
> 2. To connect the server to Internet with a new NIC. Then, configure the
> server to accept incoming VPN connections and make it an internet gateway
> for the users on the office network.
>
> The question is which way is better and secure, and why?

There's really no good way to answer that. It all depends on host security,
configuration, services, etc. In general, I would suggest using a cheap
router that has inbound tunnel support, use that as a cheap-o firewall, and
use RRAS.

Note that this is a very sub-optimal way to do this, and you need to read
and understand the security implications and responsibilities related to
your operating system in order to make this stable and effective.

 >> Stay informed about: Network security 
Back to top
Login to vote
Ken Lynch

External


Since: Sep 26, 2003
Posts: 16



(Msg. 3) Posted: Thu Oct 23, 2003 2:22 pm
Post subject: Re: Network security [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
We use a Cisco PIX as a firewall. The PIX is outside of the switches. All
users pass through the PIX to get to the Internet. The PIX also supports
VPN. We have disabled all ports that are not needed for HTTP, FTP, VPN or
SMTP. We have a static IP address and the PIX handles the translations, but
I still lie awake at nights worried about security.

I wouldn't scrimp on the router. It is the only thing between you and the
baddies.

"Keith W. McCammon" <km DeleteThis @km.com> wrote in message
news:OgnzfdYmDHA.3688@TK2MSFTNGP11.phx.gbl...
> > 1. To bay a DSL/VPN router (Linksys for example), connect it to the
switch
> > and configure it to complete the task.
> >
> > 2. To connect the server to Internet with a new NIC. Then, configure the
> > server to accept incoming VPN connections and make it an internet
gateway
> > for the users on the office network.
> >
> > The question is which way is better and secure, and why?
>
> There's really no good way to answer that. It all depends on host
security,
> configuration, services, etc. In general, I would suggest using a cheap
> router that has inbound tunnel support, use that as a cheap-o firewall,
and
> use RRAS.
>
> Note that this is a very sub-optimal way to do this, and you need to read
> and understand the security implications and responsibilities related to
> your operating system in order to make this stable and effective.
>
>
 >> Stay informed about: Network security 
Back to top
Login to vote
Display posts from previous:   
Related Topics:
Security Events - Hi I have an ASP page that I am getting Permission denied on. I have tried everything I can find to get this page to work. If I change the I_USR web account to have Admin rights the asp page works fine I am wondering how I can turn on the security..

Good RAS Security - Hello All, I am looking for a product that i don't even know exist. I am looking for a product that can improve the security on my RAS server. Currently right now we are using W2K RRAS Server and this does not provide enough security. What I am looking..

security policy - ok...here is what i need or answered, If i have all the patches,run a firewall with IDS,use active directory, set ntfs permissions...am i pretty up to security standards, also say i run exchange well in order to use outlook webaccess i need to have port....

ADSL Security - We are currently upgrading from a dial-up connection to an ADSL broadband connection and have the choice of two ADSL modems: a) single port modem connected to the server via USB b) four port modem that connects to the server via an ethernet connection..

IE6 Security Patch - I downloaded and installed: August 2003, Cumulative Patch for IE for Windows Server 2003 (822925) but, there's no indication in the "about" splashscreen that it has been updated. Is there any way to tell. Also: is the IE6 (3790) that comes w...
   Windows Server (Home) -> Windows Server Security All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



[ Contact us | Terms of Service/Privacy Policy ]