Solved

Virus filtering for non-secured hotel network.

Posted on 2006-07-19
2
303 Views
Last Modified: 2010-03-19
I have a customer, a hotel that has a non-secured wireless network for their guests to use to access the internet.  Currently it's just a Cisco router and a series of wireless access points.  The problem we are having is that guests are showing up with infected laptops and using the internet connection to unknowingly blast out mail viruses in particular.  The ISP is getting annoyed and wants us to do something about it.

I thought about limiting outbound tcp/25 access to the mail servers of the ISP only.  But then most customers probably woudn't be savvy enough to change their outbound mail server and would just experience it as mail not working properly.

Alternatively I know that I could put a Barracuda hardware virus filter box in place and that would do the trick.  But at several thousand dollars that's way more than this customer wants to spend.  Does anyone know if there's a cheap Linksys-style box that would do more or less the same thing?  Basically I just need some in-line solution that will detect virus traffic and kill it, getting the ISP off our backs.

Thanks,

Ben
0
Comment
Question by:cns13
2 Comments
 
LVL 5

Accepted Solution

by:
Dbergert earned 125 total points
ID: 17140152
if you can setup a linux box, you could transparently redirect port 25 (SMTP) to a Transpart SMTP proxy that performs virus scanning,   such as :

http://smtp-proxy.klolik.org/
http://memberwebs.com/nielsen/software/proxsmtp/transparent.html

Or   Require users to use company VPNs or Webmail....  you could could put this on a stiker on the modem in the hotel or another notice and block SMTP

Or -- install a proxy server, that would filter traffic for viruses ? ? ?

I've used mailscanner.info -- also ...

 
0
 

Author Comment

by:cns13
ID: 17140194
Thanks Dbergert,

The Linux solution would be fun.  I tend to use a fair amount of Linux here in my network for remote monitoring of customer networks.

But I'm concerned about the time it would take to set up.  I talked with Sonicwall and they claimed that their gateway antivirus on a little tz170 would work.  That's only about $1000 in hardware and 2-3 hours of my time, so I think that will be the cheapest in the long run.

But I'll give you the points for being the only one to answer!

Ben
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now