Reccomended Security for network environment

Posted on 2005-05-05
Last Modified: 2013-12-04
I have Windows 2000 Server w/ 20 PC's running off of the domain.
What are your reccomendations as to a proper security set-up?
1. I have a "Netgear ProSafe VPN Firewall" router handling my cable modem Internet activity
2. Anti-virus software on each PC
3. a few workstations w/ Zone Alarm

Suggestions, tips apprreciated for my server, workstations, etc !!
Question by:Tunkster
    LVL 2

    Expert Comment

    Well, your main threats will be from the internet and it looks like you have convered that by using the netgear ProSafe VNPP Firewall. You have to workout what you companies security needs are. some examples are:
    1) Are all computer allowed to connect to each other
    2) who has rights to access which computers
    3) Printer, how can access.

    Really what I'm getting at is your next step after securing your gateway to the internet is to secure your staff access control by using policies and rigths to the users.
    LVL 5

    Expert Comment

    If ur network is full of virus/spyware that will intrude from pc to pc (intruders) I'm suggesting that u use 'BLackICE PC Protection' software. With this s/w, u will know that which pc in ur network is detected with spyware or trying to connect to another pc.

    Author Comment

    Many PC's are mapped to each other, and for those that aren't the user could simply go to "My Network Places/Entire Network" and drill down to another PC (some are Win98, some W2k and other XP)
    DO you think Norton is enough - or is it worth the time to throw on ZoneAlarm?
    LVL 38

    Accepted Solution

    ZoneAlarm has the advantage over notron and or mcafee (and dozens of others) for the last 6 years. I can't believe AV companies haven't caught on, but then again they are just like the medical industry, the $$$is in the treatment or medicine, not in the CURE.
    Anyway, ZA's advantage is it's process locking/pausing feature, this can be you best defense against 0-day viri (zero day)- These are the viri that are just now starting to spread, and the AV companies haven't made a definition for it yet. ZA see's a program that is trying to access the NIC or to register itself as a service, and is able to pause that process, and ask you for input, would you like to allow or disallow this action from this program? This in my book makes ZA more important than any AV, however unless you buy the ZA suite of tools, which include AV amoung others, ZA alone isn't enough, you still need av and anti-spyware programs. (remember when XP or winME get's viri/spyware system restore must be turned off before removing them )

    Doesn't hurt to monitor your network to the fullest, look into programs like Ntop, Snort and Cacti as well. (windows version) (not easy to setup or maintain sometimes, but always worth it)

    Featured Post

    Superior storage. Superior surveillance.

    WD Purple drives are built for 24/7, always-on, high-definition security systems. With support for up to 8 hard drives and 32 cameras, WD Purple drives are optimized for surveillance.

    Join & Write a Comment

    Recently, a new law in my state forced us to get a top-to-bottom analysis of all of our contract client's networks. While we have documentation, it was spotty at best for some - and in any event it needed to be checked against reality. That was m…
    In today's information driven age, entrepreneurs have so many great tools and options at their disposal to help turn good ideas into a thriving business. With cloud-based online services, such as Amazon's Web Services (AWS) or Microsoft's Azure, bus…
    Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…
    Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

    728 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now