Security Basics mailing list archives
Re: Setting up secure windows xp network
From: "Kenzo" <kenzo_chin () hotmail com>
Date: Fri, 23 May 2003 14:57:59 -0500
You can go with a BSD type firewall and NAT. http://thewall.sourceforge.net/ ----- Original Message ----- From: "Chris R" <admin () securityindex net> To: <security-basics () securityfocus com> Sent: Thursday, May 22, 2003 1:07 PM Subject: Re: Setting up secure windows xp network
In-Reply-To: <IDEFJDMDNDGKFEIHJDJOCEOCCGAA.sml () ukf net> Anna, I think the reason you could not use the internet before using norton and macafee firewalls is because they arent very configurable software firewalls. They are made for the typical end users machine, i dont reccomend them on a gateway. These types of firewalls typically block all outbound packets not from the IP address of the gateway they are installed on. As far as security policies go, i would strengthen your authorization policies. If your users are logging in from the outside make sure their passwords meet certain requirements such as 6 alpha numeric characters long minimum. I assume this 2000 box is windows 2000 server. The security policies on it are plentiful. You can implement IPsec as well. The firewall issue i would reccomend using is microsofts own ISA server. It installs nicely on 2000 and you can customize both inbound and outbound packet restrictions as well as policies on each ethernet card in the box. I belive ISA server helps you setup VPN's as well, but i havent worked with it in quite some time. Hope this helps. -- chrisReceived: (qmail 12243 invoked from network); 22 May 2003 17:08:09 -0000 Received: from outgoing3.securityfocus.com (205.206.231.27) by mail.securityfocus.com with SMTP; 22 May 2003 17:08:09 -0000 Received: from lists.securityfocus.com (lists.securityfocus.com[205.206.231.19])by outgoing3.securityfocus.com (Postfix) with QMQP id 82303A3162; Thu, 22 May 2003 10:13:18 -0600 (MDT) Mailing-List: contact security-basics-help () securityfocus com; run by
ezmlm
Precedence: bulk List-Id: <security-basics.list-id.securityfocus.com> List-Post: <mailto:security-basics () securityfocus com> List-Help: <mailto:security-basics-help () securityfocus com> List-Unsubscribe: <mailto:security-basics-unsubscribe () securityfocus com> List-Subscribe: <mailto:security-basics-subscribe () securityfocus com> Delivered-To: mailing list security-basics () securityfocus com Delivered-To: moderator for security-basics () securityfocus com Received: (qmail 17078 invoked from network); 22 May 2003 14:31:35 -0000 From: "SML" <sml () ukf net> To: <security-basics () securityfocus com> Subject: Setting up secure windows xp network Date: Thu, 22 May 2003 15:57:08 +0100 Message-ID: <IDEFJDMDNDGKFEIHJDJOCEOCCGAA.sml () ukf net> MIME-Version: 1.0 Content-Type: text/plain; charset="windows-1251" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Hello list. I'm in the process of securing Windows xp prof network, consisting of 5 computers. We use "workgroup" configuration. Also the computers are conected to internet through windows 2000 gateway computer with 2 network cards, where one card connects to ADSL router.
NAT
software is in place on the gateway. I'd much appreciate if somebody could point me to the internet recourses,orgive advise on how to make the most of windows own security features, policies etc. Also what software firewall could we use on the gateway,sinceafter trying norton and mcaffe firewals, we couldn't access the intrenet. Thanks, Anna-------------------------------------------------------------------------- -Thinking About Security Training? You Can't Afford Not To! Vigilar's industry leading curriculum includes: Security +, Check Point, Hacking & Assessment, Cisco Security, Wireless Security & more! RegisterNow!--UP TO 30% off classes in select cities-- http://www.securityfocus.com/Vigilar-security-basics-------------------------------------------------------------------------- ----------------------------------------------------------------------------
-
Thinking About Security Training? You Can't Afford Not To! Vigilar's industry leading curriculum includes: Security +, Check Point, Hacking & Assessment, Cisco Security, Wireless Security & more! Register
Now!
--UP TO 30% off classes in select cities-- http://www.securityfocus.com/Vigilar-security-basics --------------------------------------------------------------------------
--
--------------------------------------------------------------------------- Thinking About Security Training? You Can't Afford Not To! Vigilar's industry leading curriculum includes: Security +, Check Point, Hacking & Assessment, Cisco Security, Wireless Security & more! Register Now! --UP TO 30% off classes in select cities-- http://www.securityfocus.com/Vigilar-security-basics ----------------------------------------------------------------------------
Current thread:
- Setting up secure windows xp network SML (May 22)
- RE: Setting up secure windows xp network Manuel Fernandes (May 23)
- <Possible follow-ups>
- Re: Setting up secure windows xp network Chris R (May 23)
- Re: Setting up secure windows xp network Kenzo (May 26)
- Re: Setting up secure windows xp network m g (May 23)
- RE: Setting up secure windows xp network Lachlan McGill (May 27)
- Re: Setting up secure windows xp network Danny (May 28)
- RE: Setting up secure windows xp network James Taylor (May 28)
- Setting up secure windows xp network SML (May 29)
- Re: Setting up secure windows xp network James Taylor (May 30)
- RE: Setting up secure windows xp network wjnorth (May 29)
- Re: Setting up secure windows xp network Chris Berry (May 29)