Steven L Umbach
Guest
|
 Posted:
Wed Feb 02, 2005 6:46 am Post subject:
Re: Win2000 server firewall? |
|
|
The NAT router will provide a lot of protection but I hoped you sprung for
one that also does stateful inspection such as the Netgear ProSafe line that
starts under $100. The problem with firewalls on servers, particularly
domain controllers, is that you have to open it up so much to allow clients
access that it reduces it's ability to protect somewhat. Since you are
behind a perimeter device I would suggest that you implement ipsec filtering
policy on your servers that use permit and block actions to act as a built
in packet filtering firewall. The Windows 2003 Security Guide has explicit
instructions how to do such and would also apply to W2K.
http://www.microsoft.com/technet/security/prodtech/windowsserver2003/w2003hg/sgch00.mspx
Beyond firewalls read other suggestions in the security guide and be sure to
enforce complex passwords on all computers, have an antivirus strategy that
also makes sure all email attachments are scanned, secure Internet Explorer,
have a backup and disaster recovery plan, and keep current with critical
updates at Windows Updates which can be done automatically. The link below
is great for security tips for small businesses. --- Steve
http://www.microsoft.com/smallbusiness/gtm/securityguidance/checklist/default.mspx
"David Sanders" <news@nospam.sandersweb.net> wrote in message
news:%23NhEbRKCFHA.3592@TK2MSFTNGP09.phx.gbl...
| Quote: | I have a network with two servers and about ten clients. All of this is
behind a NAT router that provides internet access to the clients. The
servers run Windows 2000 Server. The clients run personal firewalls (like
the one in XP SP2). The servers do not have firewalls. My question is
should they? will that effect their functionality? which firewall is
appropriate to a server?
TIA |
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in