Security Basics mailing list archives
DMZ and VPN
From: Security Manager <sec_man1234 () yahoo com>
Date: Mon, 17 Feb 2003 17:29:39 +0000
I've been following the thread on FTP servers in the DMZ with interest. I'm curious as to how it applies to a server providing VPN access using Win2k Server's Routing and Remote Access.
Given that the VPN is supposed to give access to the private network to external clients (who can authenticate) how can you avoid having at least one interface on the local network? Surely the best you can do is have one interface on the private network, and the other in a DMZ (behind the firewall) - but you've still the problem if the VPN provider is compromised!
How do you solve that one? TIA - SecMan.
Current thread:
- DMZ and VPN Security Manager (Feb 18)
- RE: DMZ and VPN John Tolmachoff (Feb 18)
- Re: DMZ and VPN Alberto Cozer (Feb 18)
- RE: DMZ and VPN David Gillett (Feb 19)
- <Possible follow-ups>
- Re: DMZ and VPN abretten (Feb 18)
- Re: DMZ and VPN Chris Travers (Feb 19)
- RE: DMZ and VPN Fields, James (Feb 18)