ISP Security Suggestions
From: Vernon (Vernon@b2unow.com)Date: 03/24/02
- Previous message: Juan Manuel Mouriz: "Re: Firewall Server"
- Next in thread: Ansel, Kenny L. (Sytex Contractor): "RE: ISP Security Suggestions"
- Reply: Ansel, Kenny L. (Sytex Contractor): "RE: ISP Security Suggestions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 24 Mar 2002 10:05:57 -0500 From: "Vernon" <Vernon@b2unow.com> To: "security-basics@securityfocus.com" <security-basics@securityfocus.com>
I have a Windows 2000 Advanced Server setup with a T1 and a Cisco Router
2600 that is managed by our T1 provider. I've also have deployed the
latest version of IceCap (the network version of Black Ice) blocking all
ports, other than those needed to support our email server, 25 and 110.
Furthermore, I've blocked every port using Microsoft's IPSec, again
excluding 25 and 110, and naturally we keep up-to-date with all the
latest patches from Microsoft.
My question is, as this machine is not setup using a Proxy server nor do
I have a hardware firewall does anyone see a real need to purchase a
hardware firewall? Or furthermore a proxy server? I understand that this
would be the ideal situation and every ounce of effort you make a hacker
go through limits their ability to hack into my network, but doesn't it
seem a little redundant to add these extra steps? Does anyone feel that
these extra steps, extra effort and added cost are justified?
Any suggestions and or comments would be greatly appreciated.
Thanks
- Previous message: Juan Manuel Mouriz: "Re: Firewall Server"
- Next in thread: Ansel, Kenny L. (Sytex Contractor): "RE: ISP Security Suggestions"
- Reply: Ansel, Kenny L. (Sytex Contractor): "RE: ISP Security Suggestions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
