[Last Call] Learn how to a build a cloud-first strategyRegister Now

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 260
  • Last Modified:

Reccomended Security for network environment

I have Windows 2000 Server w/ 20 PC's running off of the domain.
What are your reccomendations as to a proper security set-up?
1. I have a "Netgear ProSafe VPN Firewall" router handling my cable modem Internet activity
2. Anti-virus software on each PC
3. a few workstations w/ Zone Alarm

Suggestions, tips apprreciated for my server, workstations, etc !!
1 Solution
Well, your main threats will be from the internet and it looks like you have convered that by using the netgear ProSafe VNPP Firewall. You have to workout what you companies security needs are. some examples are:
1) Are all computer allowed to connect to each other
2) who has rights to access which computers
3) Printer, how can access.

Really what I'm getting at is your next step after securing your gateway to the internet is to secure your staff access control by using policies and rigths to the users.
If ur network is full of virus/spyware that will intrude from pc to pc (intruders) I'm suggesting that u use 'BLackICE PC Protection' software. With this s/w, u will know that which pc in ur network is detected with spyware or trying to connect to another pc.
TunksterAuthor Commented:
Many PC's are mapped to each other, and for those that aren't the user could simply go to "My Network Places/Entire Network" and drill down to another PC (some are Win98, some W2k and other XP)
DO you think Norton is enough - or is it worth the time to throw on ZoneAlarm?
Rich RumbleSecurity SamuraiCommented:
ZoneAlarm has the advantage over notron and or mcafee (and dozens of others) for the last 6 years. I can't believe AV companies haven't caught on, but then again they are just like the medical industry, the $$$is in the treatment or medicine, not in the CURE.
Anyway, ZA's advantage is it's process locking/pausing feature, this can be you best defense against 0-day viri (zero day)- These are the viri that are just now starting to spread, and the AV companies haven't made a definition for it yet. ZA see's a program that is trying to access the NIC or to register itself as a service, and is able to pause that process, and ask you for input, would you like to allow or disallow this action from this program? This in my book makes ZA more important than any AV, however unless you buy the ZA suite of tools, which include AV amoung others, ZA alone isn't enough, you still need av and anti-spyware programs. (remember when XP or winME get's viri/spyware system restore must be turned off before removing them http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001111912274039?OpenDocument&src=sec_doc_nam http://support.microsoft.com/kb/q263455/ )

Doesn't hurt to monitor your network to the fullest, look into programs like Ntop, Snort and Cacti as well.
http://www.ntop.org/overview.html http://www.openxtra.co.uk/products/ntop-xtra.php (windows version)
http://www.snort.org/ (not easy to setup or maintain sometimes, but always worth it)

Featured Post

Cyber Threats to Small Businesses (Part 1)

This past May, Webroot surveyed more than 600 IT decision-makers at medium-sized companies to see how these small businesses perceived new threats facing their organizations.  Read what Webroot CISO, Gary Hayslip, has to say about the survey in part 1 of this 2-part blog series.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now