[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Recommendation to secure dial-in access

Posted on 2005-04-18
1
Medium Priority
?
182 Views
Last Modified: 2010-04-09
I was wondering if anyone could provide me with some recommendations on securing my LANs dial-in access. We currently allowing some users to use PCAnywhere for support. I woudl like to require them to all dial through one RAS, and I would like to make the use a secure key that is generated automatically - in otherworks, no one could dial in without calling us first. Are there any systems like this?


Also, does anyone know of a good product which sweeps a network to detect unauthorized remote access programs.

Thanks
0
Comment
Question by:ainselyb
1 Comment
 
LVL 9

Accepted Solution

by:
TannerMan earned 1000 total points
ID: 13814331
Here is the way I see it to be done securely.
This is assuming you have Internet Access to your LAN.
Remove ALL modem connections from your network. In my opinion a modem is nothing but a whole waiting to be penetrated. Others will certainly disagree.
Get a static IP address from your ISP.
Put in a VPN solution. This could be a vpn server like windows 2003, Firewall like ISA 2004, or another vpn solution.
Users MUST vpn in (authenticate with a local username/password), then they can run PCAnyWhere or VNC, or similar to connect to their machines.
You can control WHO can dial in.
You control only 1 single point of entry vs. multipe
You can use PPTP which isn't all that secure, or you can use L2TP/IPSEC to secure the channel with a certificate.

Hope it helps.

0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
In a question here at Experts Exchange (https://www.experts-exchange.com/questions/29062564/Adobe-acrobat-reader-DC.html), a member asked how to create a signature in Adobe Acrobat Reader DC (the free Reader product, not the paid, full Acrobat produ…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses
Course of the Month18 days, 12 hours left to enroll

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question