|
Posted by Leythos on November 26, 2004, 11:46 pm
If you were Registered and logged in, you could reply and use other advanced thread options > A small business I am dealing with have the following setup.
>
> Windows 2000 Domain Controller, also running SQL server for a customer
> database.
> This server has a PCI ADSL adapter on the server with ICS enabled, and a NIC
If you want security then this has to change - remove the ADSL adapter,
install an appliance that does PPOE authentication, and you will have
many options.
> wired to a 4 port switch, on another port is a wireless access point. 10
> other computers have wireless cards no wired network is in use. Also no
> encryption is used for the wireless setup. Wireless network runs at 22mbps.
What's the point of installing a firewall if you don't secure the
wireless, if they don't value the network then why bother protecting it?
> The company is looking for something that would allow for the following.
>
> Each PC will access POP3 and SMTP server from the ISP, and web.
> Possible VPN solution for remote management of server.
> Good degree of firewall protection.
You have several options once you get the DSL card out of the server and
onto a device.
Since you don't care about security (as exampled by the completely open
wireless network) you could use a simple NAT Router to provide all of
what you want. The router, many of them, support inbound PPTP sessions,
so you could allow users to VPN (PPTP) into the server from anywhere at
any time and manage it through their user accounts. A cheap D-Link DI-
804HV unit supports inbound PPTP sessions (even directly to the unit)
and runs about $59 in most places: http://www.dlink.com/products/?pid=59
> It would also be handy if the company could still use the original wireless
> access point as this supports 22mps
They can use a WAP with any network layout, since it's an access point
you only need to change the subnet to match that of the network and
you're in.
Keep in mind, anyone in range can also (already) use this same network,
you need to secure it.
--
--
spamfree999@rrohio.com
(Remove 999 to reply to me)
| 
XML site map