Solved

Virus filtering for non-secured hotel network.

Posted on 2006-07-19
2
307 Views
Last Modified: 2010-03-19
I have a customer, a hotel that has a non-secured wireless network for their guests to use to access the internet.  Currently it's just a Cisco router and a series of wireless access points.  The problem we are having is that guests are showing up with infected laptops and using the internet connection to unknowingly blast out mail viruses in particular.  The ISP is getting annoyed and wants us to do something about it.

I thought about limiting outbound tcp/25 access to the mail servers of the ISP only.  But then most customers probably woudn't be savvy enough to change their outbound mail server and would just experience it as mail not working properly.

Alternatively I know that I could put a Barracuda hardware virus filter box in place and that would do the trick.  But at several thousand dollars that's way more than this customer wants to spend.  Does anyone know if there's a cheap Linksys-style box that would do more or less the same thing?  Basically I just need some in-line solution that will detect virus traffic and kill it, getting the ISP off our backs.

Thanks,

Ben
0
Comment
Question by:cns13
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 5

Accepted Solution

by:
Dbergert earned 125 total points
ID: 17140152
if you can setup a linux box, you could transparently redirect port 25 (SMTP) to a Transpart SMTP proxy that performs virus scanning,   such as :

http://smtp-proxy.klolik.org/
http://memberwebs.com/nielsen/software/proxsmtp/transparent.html

Or   Require users to use company VPNs or Webmail....  you could could put this on a stiker on the modem in the hotel or another notice and block SMTP

Or -- install a proxy server, that would filter traffic for viruses ? ? ?

I've used mailscanner.info -- also ...

 
0
 

Author Comment

by:cns13
ID: 17140194
Thanks Dbergert,

The Linux solution would be fun.  I tend to use a fair amount of Linux here in my network for remote monitoring of customer networks.

But I'm concerned about the time it would take to set up.  I talked with Sonicwall and they claimed that their gateway antivirus on a little tz170 would work.  That's only about $1000 in hardware and 2-3 hours of my time, so I think that will be the cheapest in the long run.

But I'll give you the points for being the only one to answer!

Ben
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
Even if you have implemented a Mobile Device Management solution company wide, it is a good idea to make sure you are taking into account all of the major risks to your electronic protected health information (ePHI).
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question