VPN's - Firewall's and Security
From: Christopher Joles (CJoles_at_proteabhs.com)
Date: 08/26/03
- Previous message: Abe Usher: "towards a taxonomy of Information Assurance (IA)"
- Next in thread: Halverson, Chris: "RE: VPN's - Firewall's and Security"
- Maybe reply: Halverson, Chris: "RE: VPN's - Firewall's and Security"
- Maybe reply: Christopher Joles: "RE: VPN's - Firewall's and Security"
- Maybe reply: Halverson, Chris: "RE: VPN's - Firewall's and Security"
- Reply: David Gillett: "RE: VPN's - Firewall's and Security"
- Maybe reply: Christopher Joles: "RE: VPN's - Firewall's and Security"
- Reply: Larry Thompson: "RE: VPN's - Firewall's and Security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 26 Aug 2003 11:08:53 -0400 To: <security-basics@securityfocus.com>
Good Day All!
I'm looking for design advice.
Currently, I have a network that is protected by a Cisco PIX 515 =
firewall. We have it configured to protect our internal network along =
with supplying access to our DMZ which holds our email and web servers.
My concern arises from the spread of the blaster worm. Currently we =
give a couple employees (the boss, the CFO and myself) VPN access from =
home. In this scenario, the bosses home computer was compromised by the
= blaster worm and luckily for me, he was on vacation in Germany at the
= time. If he wasn't, he most assuridly would have made a VPN
connection = and the lovely blaster worm would have gotten through our
defenses. = Keep in mind, I had applied the MS patch to our servers and
= workstations, however, it would have still gotten "inside". How can I
= redesign my network to either firewall the VPN connections or at a =
minimum filter them.
Thanx for your opinions in advance!
Christopher J. Joles
Chief Information Officer
PROTEA Behavioral Health Services
187 Exchange St.
Bangor, ME 04401
Phone: (207)992-7010 Ext: 245 Fax:(207)992-7011
---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Federal, September 29-30 (Training),
October 1-2 (Briefings) in Tysons Corner, VA; the world's premier
technical IT security event. Modeled after the famous Black Hat event in
Las Vegas! 6 tracks, 12 training sessions, top speakers and sponsors.
Symantec is the Diamond sponsor. Early-bird registration ends September 6.Visit us: www.blackhat.com
----------------------------------------------------------------------------
- Previous message: Abe Usher: "towards a taxonomy of Information Assurance (IA)"
- Next in thread: Halverson, Chris: "RE: VPN's - Firewall's and Security"
- Maybe reply: Halverson, Chris: "RE: VPN's - Firewall's and Security"
- Maybe reply: Christopher Joles: "RE: VPN's - Firewall's and Security"
- Maybe reply: Halverson, Chris: "RE: VPN's - Firewall's and Security"
- Reply: David Gillett: "RE: VPN's - Firewall's and Security"
- Maybe reply: Christopher Joles: "RE: VPN's - Firewall's and Security"
- Reply: Larry Thompson: "RE: VPN's - Firewall's and Security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
