Recommendations to secure a point to point and VPN customer network

Unanswered Question
Nov 25th, 2008

Hello. We have a network of costumers with 2 mb links over ethernet and over VPN too. They can see our windows servers ( they have to ) to connect to our services. The question now is: If they are using M.S windows clients ( hosts ) that are connected to the internet, are they dangerous to our network ? Beside filtering traffic, to only give access to certain hosts what more do you recommend ? The servers are windows too. Are we in danger because of the possible infections of our costumers ¿? What is the beet approach to this ?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
cisco24x7 Tue, 11/25/2008 - 09:57

You need to have host IDS/IPS on the windows

servers and also network IDS/IPS at the point

of entry after the traffics are decrypted to

catch worms and viruses

ariesc_33 Wed, 11/26/2008 - 19:34

is the connection on the ethernet a private network? and VPN is in used over the internet connection? if os, then, there will no security issue but i suggest you harden the network by having access-list that only allows specific services required from the hosts then everything else is blocked.

Actions

This Discussion