11-25-2008 09:30 AM
Hello. We have a network of costumers with 2 mb links over ethernet and over VPN too. They can see our windows servers ( they have to ) to connect to our services. The question now is: If they are using M.S windows clients ( hosts ) that are connected to the internet, are they dangerous to our network ? Beside filtering traffic, to only give access to certain hosts what more do you recommend ? The servers are windows too. Are we in danger because of the possible infections of our costumers ¿? What is the beet approach to this ?
11-25-2008 09:57 AM
You need to have host IDS/IPS on the windows
servers and also network IDS/IPS at the point
of entry after the traffics are decrypted to
catch worms and viruses
11-26-2008 07:34 PM
is the connection on the ethernet a private network? and VPN is in used over the internet connection? if os, then, there will no security issue but i suggest you harden the network by having access-list that only allows specific services required from the hosts then everything else is blocked.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: