Solved

Virus filtering for non-secured hotel network.

Posted on 2006-07-19
2
306 Views
Last Modified: 2010-03-19
I have a customer, a hotel that has a non-secured wireless network for their guests to use to access the internet.  Currently it's just a Cisco router and a series of wireless access points.  The problem we are having is that guests are showing up with infected laptops and using the internet connection to unknowingly blast out mail viruses in particular.  The ISP is getting annoyed and wants us to do something about it.

I thought about limiting outbound tcp/25 access to the mail servers of the ISP only.  But then most customers probably woudn't be savvy enough to change their outbound mail server and would just experience it as mail not working properly.

Alternatively I know that I could put a Barracuda hardware virus filter box in place and that would do the trick.  But at several thousand dollars that's way more than this customer wants to spend.  Does anyone know if there's a cheap Linksys-style box that would do more or less the same thing?  Basically I just need some in-line solution that will detect virus traffic and kill it, getting the ISP off our backs.

Thanks,

Ben
0
Comment
Question by:cns13
2 Comments
 
LVL 5

Accepted Solution

by:
Dbergert earned 125 total points
ID: 17140152
if you can setup a linux box, you could transparently redirect port 25 (SMTP) to a Transpart SMTP proxy that performs virus scanning,   such as :

http://smtp-proxy.klolik.org/
http://memberwebs.com/nielsen/software/proxsmtp/transparent.html

Or   Require users to use company VPNs or Webmail....  you could could put this on a stiker on the modem in the hotel or another notice and block SMTP

Or -- install a proxy server, that would filter traffic for viruses ? ? ?

I've used mailscanner.info -- also ...

 
0
 

Author Comment

by:cns13
ID: 17140194
Thanks Dbergert,

The Linux solution would be fun.  I tend to use a fair amount of Linux here in my network for remote monitoring of customer networks.

But I'm concerned about the time it would take to set up.  I talked with Sonicwall and they claimed that their gateway antivirus on a little tz170 would work.  That's only about $1000 in hardware and 2-3 hours of my time, so I think that will be the cheapest in the long run.

But I'll give you the points for being the only one to answer!

Ben
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Macbook Sierra OS OpenVPN issue 13 110
Help logging in to my router 12 57
Help with a subnetting question 7 58
MSSQL server connection  forced closed 3 38
When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question