Solved

web server or vpn for remote access

Posted on 2003-12-09
7
366 Views
Last Modified: 2010-04-11
Dear experts...

I have a windows AD network with dsl. I need to allow external users access to internal network.  how should I set it up What is cost effective for company and easy for  users

1. with vpn solution and if so what router .. Is Watchguard a good Product?
2.. intranet web server in dmz ?
3. remote desktop.... all are xpclient machines and server is sbs2003..I dont have terminal server.

I feel that I maybe going about this the wrong way . budget for hardware is about  1500.00

thanks for all answers

gkilmartin
0
Comment
Question by:Gkilmartin
7 Comments
 
LVL 10

Expert Comment

by:BloodRed
ID: 9907898
You already have what you need, SBS2003 supports remote access/VPN:

http://support.microsoft.com/default.aspx?scid=kb;en-us;818749&Product=sbserv2003
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 440 total points
ID: 9907984
The question is - do you trust Microsoft for security to be the guardian of your network? Microsoft puts out "security updates" almost daily. Security updates are pushed because someone found a hole in it yesterday. You have no protection for day zero attacks.

My suggestion: Invest in a Cisco PIX 506e Firewall. Stateful Packet Inspection using Adaptive Security Algorithm, AES encrypted IPSEC VPN, and very fine control over who does what.

DSL-->PIX-->switch

Let users VPN (free client) into the PIX, then launch Remote Desktop to the W2k3 server. This provides you a multi-layer authentication and stateful packet inspection, and does not put your Microsoft server up as your first line of defense.
Cost = right about $1000
0
 
LVL 5

Expert Comment

by:Insolence
ID: 9908451
I'll have to agree with lrmoore.  If you have the money, invest in good hardware.  Windows does have a VPN server built-in that actually works rather well with other windows computers, but it is not by all means secure.  So... I'm just seconding lrmoore's opinion.  =)

 - I
0
 

Expert Comment

by:Ktinkie
ID: 9955606
I also second the Irmoo....'s idea 4 ur security
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question