Re: Router vs. Firewall?

From: Duane Arnold (notme_at_notme.com)
Date: 02/27/04 

Date: Fri, 27 Feb 2004 17:54:21 GMT

Terry <gobeyondgobeyond@REM0VE.yahoo.com> wrote in
news:MPG.1aa92689e7cab8e198968a@news.tc.umn.edu:

> Hi,
>
> I have a Linksys router connected to a cable modem. The router is
> connected with 3 office computers, one of which has Windows XP Pro
> Remote Desktop on it. I want to log on to this machine from home. So,
> on the router, I forward the proper TCP ports to this machine.
>
> I understand that now the router is visible to the outside world. I
> wonder if I should implement a firewall. It seems like that the router
> can only forward traffic directed to the specific ports for Remote
> Desktop while other ports are not open. Does this give me enough
> security? Can an intruder open up other ports and find out what I have
> in the office network?

You port forward those ports on the Linksys router to a private side
ip/machine on the LAN, those ports are exposed to the public Internet and
the machine is not protected by the router on the forwarded ports.
>
> The router does support VPN. I wonder if VPN is really necessary for
> Remote Desktop. Without VPN, can someone sees what I see when I log on
> to my office computer?

VPN is for stopping eavesdropping on the TCP/IP connection. VPN
encapsulates the data packets in an encrypted VPN protocol like IPsec,
PPTP, etc., and the VPN protocol rides in on the TCP/IP protocol which is
the carrier protocol. I don't think VPN in no way ensures that a machine
cannot be hacked, just by using VPN.

You should consider a RDS software like pcanywhere or MS Netmeeting's
(RDS) on the XP O/S can also be place into a secure connection, along
with using the VPN end point to end point connection.

You can also use IPsec that's on the XP O/S and set a rule to only allow
a VPN connection on the ports, along with a host based FW on the machine,
limiting what IP(s) can make contact on the inbound ports that are being
used.
 
Duane :)
   

Relevant Pages

  • Re: Novice trying to setup VPN on XP with Linkys Router
    ... my office vpn on my laptop. ... I have even tried to delete the connection and adding it ... The modem is connected to a wireless router. ... home) and I want to use the Windows XP VPN feature. ...
    (microsoft.public.windowsxp.work_remotely)
  • RE: PPTP VPN connection problems
    ... But I do not think it is in the ADSL router itself. ... They do not say it but maybe they prohibit VPN connections ... fix IP for my connection – PPPoE/PPPoA) subscription at belgacom in Belgium ... | A ping to the server would result in "Request timed out". ...
    (microsoft.public.windows.server.sbs)
  • Re: Do I need these services listening?
    ... > receives its internet connection via the first computer. ... wrote both computers are connected to the router and the router is ... The router does provide the internet connection. ... all the ports are supposed to be closed ...
    (comp.security.firewalls)
  • RE: VPN Connects once then Error 721
    ... connection, the connection fails and you receive an error 721. ... To verify whether the router is the root cause, ... Server to a simple hub and connect the client to the same hub. ... Configure the VPN connection on the client and do a VPN test. ...
    (microsoft.public.windows.server.sbs)
  • RE: Adsl VPN
    ... I understand that you want to setup VPN ... function on your single NIC SBS with ADSL Internet connection. ... How to configure Internet access in Windows Small Business Server 2003 ... You have a ADSL router before SBS, the SBS and all clients will connect ...
    (microsoft.public.windows.server.sbs)