Security Basics mailing list archives
Re: Network Re-design
From: Jeremy Saintot <jeremy.saintot () free fr>
Date: Sat, 10 Mar 2007 17:58:56 +0100
Hi,I think that the best for you would be to set up serveral network segments. At least one for the DMZ with all your servers and one for the workstations, each in a different subnet. For the security, also think of using site-to-site VPN between your two sites.
With your amount of workstations I would advise you to buy a strong appliance box for routing / firewalling / VPN and eventually antispam, antivirus, intrusion prevention, URL filtering and so on.
Regards, Jeremy Saintot Tornado a écrit :
Hello All, We are in process of redesigning our whole network from securityperspective. We have around 400 workstations with around 20 servers. These are located between 2 locations and connected with dedicated P2P link. None of the servers are facing the internet at the moment.But in the forthcoming months we might have some servers facing the internet.I wanted to know what are the considerations we need to takewhen taking such a crtical activity. Are there any good resources on the netwhich help us to get started? Thanks in advance. ---------------------------------------------------------------------- Click for free info on criminal justice degrees and make $150K/ year http://tags.bluebottle.com/fc/CAaCMPJnQhOgsuK503hrQ7H84DhnARet/
Current thread:
- Network Re-design Tornado (Mar 06)
- Re: Network Re-design Ansgar -59cobalt- Wiechers (Mar 06)
- Re: Network Re-design Isaac Perez (Mar 07)
- Re: Network Re-design Jeremy Saintot (Mar 12)
- Re: Network Re-design Ansgar -59cobalt- Wiechers (Mar 06)