Re: Securing management access?
- From: "Augusto Alvarez" <augusto.alvarez82@xxxxxxxxx>
- Date: Mon, 18 Feb 2008 09:33:25 -0200
If you want just to manage the server remotely you dont need a VPN. A VPN is set to simulate a private network connection (like the LAN on your organization) using a public connection like internet, it comes at hand when you want to several machines connected by a WAN to, for example, logon to a same domain. I dont think that is your case.
The best way I think in your case is implementing a firewall (like ISA Server 2006) with all the rules set to only allow the traffic that you need; and use remote desktop to connect to your server using a public IP. If you have several servers but only one public IP, ISA can really help you there: you can set the firewall to listen on different ports for each server connection.
Hope it helps
Cheers
--
augusto alvarez | it pro | southworks
http://staff.southworks.net/aalvarez
"JBJBJB" <JBJBJB@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:793DFDED-308E-47E1-9657-2801848E60D8@xxxxxxxxxxxxxxxx
Hello Augusto,
Thanks for replying, I'll explain in a bit more detail.
I would like to manage a server that shall be hosted in a hosting center, so
I do not have physical access to that server. Now I wonder what
infrastructure I need (firewall? VPN?...) and which settings I should use in
order to safely manage this server from our office.
I was thinking of some scenario's:
A. Setup a VPN between our office and the server and only allow management
traffic to that server from the VPN
But this might be complex to setup (I won't know exactly how to do this).
B. Just use IP filtering to limit the source for management
This might be too simple and easy to bypass for hackers.
C. Just use Remote Desktop protocol (RDP)
Perhaps RDP traffic is encrypted by nature and using it to manage a remote
server outside our network might be sufficient. But I don't believe so just
yet, although I can't tell the exact risks of this solution.
I hope this information is sufficient for you to get a picture of what I'm
looking for, I hope you can help me find the best and most secure solution.
TIA,
Jeroen
"Augusto Alvarez" wrote:
Its not really clear what you need to do on your network. You want to
configure a VPN or do you want to block any access from an external network
to your server?
--
augusto alvarez | it pro | southworks
http://staff.southworks.net/aalvarez
"JBJBJB" <JBJBJB@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:78FC67BB-1245-45B9-A61E-FBC0DE22B418@xxxxxxxxxxxxxxxx
>I would very much like to know how I can configure the firewall or >network
> settings of a Windows 2003 server in a way that it can only be managed > and
> accessed from our office. Could I use IP filtering for it and would it
> suffice? Perhaps create a VPN between our office and the servers, but I
> can't
> find any article on how to set this up properly.
>
> Does anyone have guideline articles on how to configure this? Perhaps > some
> links to articles on how to set this up
>
> TIA,
> Jeroen
.
- References:
- Re: Securing management access?
- From: Augusto Alvarez
- Re: Securing management access?
- From: JBJBJB
- Re: Securing management access?
- Prev by Date: Re: Securing management access?
- Next by Date: Re: Securing management access?
- Previous by thread: Re: Securing management access?
- Next by thread: Re: Securing management access?
- Index(es):
Relevant Pages
|
|
