What is your network infratructure security ?
- From: Eric <Eric_m@xxxxxxxxxxxxxxxxxx>
- Date: Tue, 07 Jul 2009 12:02:46 +0200
Hello,
(first sorry if I make mistakes as I am not fluent ;-)).
I am working for a big company and we would like to secure our network infrastructure (Lan ip addresses etc...).
Here is the situation.
Actually, we can say that we have no network security as our workstations and our servers are in the same LAN (10.10.x.x/16).
We would like to secure this by restructuring our LAN.
I was thinking about doing that :
1. Segment the network by zone (critical, Important, Normal).
2. Each zone will have a specific network address.
3. Each zone will have two sub-zone with two VLANs. The first sub-zone will be for the "presentation servers" (like IIS etc...) and the second sub-zone will protect the datas (SQL Server, specific applications etc...)
Then a user will :
- only be able to connect to the needed zone (he will not have any access to the "critical" zone if not needed).
- only be able to connect to the first sub-zone (IIS) and never to the SQL Server for every zone.
What do you think about this infrastructure ?
Should it be too "heavy" for our network administrators to configure them ?
Do you have others ideas ? :D
Thanks
--
Eric
.
- Follow-Ups:
- Re: What is your network infratructure security ?
- From: Meinolf Weber [MVP-DS]
- Re: What is your network infratructure security ?
- Prev by Date: RPC Lockdown
- Next by Date: Re: What is your network infratructure security ?
- Previous by thread: RPC Lockdown
- Next by thread: Re: What is your network infratructure security ?
- Index(es):
Relevant Pages
|
Loading
