Solved

web server or vpn for remote access

Posted on 2003-12-09
7
365 Views
Last Modified: 2010-04-11
Dear experts...

I have a windows AD network with dsl. I need to allow external users access to internal network.  how should I set it up What is cost effective for company and easy for  users

1. with vpn solution and if so what router .. Is Watchguard a good Product?
2.. intranet web server in dmz ?
3. remote desktop.... all are xpclient machines and server is sbs2003..I dont have terminal server.

I feel that I maybe going about this the wrong way . budget for hardware is about  1500.00

thanks for all answers

gkilmartin
0
Comment
Question by:Gkilmartin
7 Comments
 
LVL 10

Expert Comment

by:BloodRed
ID: 9907898
You already have what you need, SBS2003 supports remote access/VPN:

http://support.microsoft.com/default.aspx?scid=kb;en-us;818749&Product=sbserv2003
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 440 total points
ID: 9907984
The question is - do you trust Microsoft for security to be the guardian of your network? Microsoft puts out "security updates" almost daily. Security updates are pushed because someone found a hole in it yesterday. You have no protection for day zero attacks.

My suggestion: Invest in a Cisco PIX 506e Firewall. Stateful Packet Inspection using Adaptive Security Algorithm, AES encrypted IPSEC VPN, and very fine control over who does what.

DSL-->PIX-->switch

Let users VPN (free client) into the PIX, then launch Remote Desktop to the W2k3 server. This provides you a multi-layer authentication and stateful packet inspection, and does not put your Microsoft server up as your first line of defense.
Cost = right about $1000
0
 
LVL 5

Expert Comment

by:Insolence
ID: 9908451
I'll have to agree with lrmoore.  If you have the money, invest in good hardware.  Windows does have a VPN server built-in that actually works rather well with other windows computers, but it is not by all means secure.  So... I'm just seconding lrmoore's opinion.  =)

 - I
0
 

Expert Comment

by:Ktinkie
ID: 9955606
I also second the Irmoo....'s idea 4 ur security
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question