Solved

Virus filtering for non-secured hotel network.

Posted on 2006-07-19
2
308 Views
Last Modified: 2010-03-19
I have a customer, a hotel that has a non-secured wireless network for their guests to use to access the internet.  Currently it's just a Cisco router and a series of wireless access points.  The problem we are having is that guests are showing up with infected laptops and using the internet connection to unknowingly blast out mail viruses in particular.  The ISP is getting annoyed and wants us to do something about it.

I thought about limiting outbound tcp/25 access to the mail servers of the ISP only.  But then most customers probably woudn't be savvy enough to change their outbound mail server and would just experience it as mail not working properly.

Alternatively I know that I could put a Barracuda hardware virus filter box in place and that would do the trick.  But at several thousand dollars that's way more than this customer wants to spend.  Does anyone know if there's a cheap Linksys-style box that would do more or less the same thing?  Basically I just need some in-line solution that will detect virus traffic and kill it, getting the ISP off our backs.

Thanks,

Ben
0
Comment
Question by:cns13
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 5

Accepted Solution

by:
Dbergert earned 125 total points
ID: 17140152
if you can setup a linux box, you could transparently redirect port 25 (SMTP) to a Transpart SMTP proxy that performs virus scanning,   such as :

http://smtp-proxy.klolik.org/
http://memberwebs.com/nielsen/software/proxsmtp/transparent.html

Or   Require users to use company VPNs or Webmail....  you could could put this on a stiker on the modem in the hotel or another notice and block SMTP

Or -- install a proxy server, that would filter traffic for viruses ? ? ?

I've used mailscanner.info -- also ...

 
0
 

Author Comment

by:cns13
ID: 17140194
Thanks Dbergert,

The Linux solution would be fun.  I tend to use a fair amount of Linux here in my network for remote monitoring of customer networks.

But I'm concerned about the time it would take to set up.  I talked with Sonicwall and they claimed that their gateway antivirus on a little tz170 would work.  That's only about $1000 in hardware and 2-3 hours of my time, so I think that will be the cheapest in the long run.

But I'll give you the points for being the only one to answer!

Ben
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Short answer to this question: there is no effective WiFi manager in iOS devices as seen in Windows WiFi or Macbook OSx WiFi management, but this article will try and provide some amicable solutions to better suite your needs.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question