Solved

Secure Internet Printing (IPP)

Posted on 2007-12-03
2
2,443 Views
Last Modified: 2013-12-15
Looking for a secure (HIPAA compliant) internet printing solution.  So far IPP seems to be the right solution, however I'm not finding a lot of information out there.

The scenario is this... folks at our client offices access our system via an HTTPS web client.  For printing we need to maintain a VPN tunnel to pass port 515 or 9100 traffic.  Looking to get out from having to maintain site-to-site or SSL-VPN tunnels.

The system we run only prints to printers using a UNC naming convention - \\server\print_share - so what i need to do is create a an IPP printer on the system, and share it in a UNC convention.  Downside is right now Windows won't let me share an IPP printer.  So I'm stuck with that dilemma at the moment and may have to find a print server that'll allow this to happen.

Assuming once I can get over that hurdle, then I need to be concerned with securing the print stream over the internet so that it's encrypted and secure to keep the HIPAA compliance folks happy.

To make life easier - I'm going to impose 1 or 2 printer models to our clients to keep support issues to a minimum.

I'm assuming the traffic will go out over port 631 - and they'll need to punch a hole in their firewall and NAT to the printer's IP address.  Finally - if I have multiple printers that I need to print to via IPP behind a single public IP address - am I looking at multiple holes through a firewall to reach each individual printer?

I know many networked printers now support IPP - but the question is how secure is it?

Thanks.

Open in new window

0
Comment
Question by:lesterawilson3
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 1

Author Comment

by:lesterawilson3
ID: 20396769
Would ThinPrint be a viable solution to my problem?  I can still have the users connect via TS / RDP over the internet to run the web client and for printing.  
0
 
LVL 40

Accepted Solution

by:
noci earned 500 total points
ID: 20477418
Cups is an IPP printing service.

So why not install a generic linux/freebsd with CUPS installed and access your printers from there. Then you might resolve printing problems also with using a generic printing model (PostScript) with translation only on the endpoint.

You can force it use HTTPS & certificates if needed.
0

Featured Post

Secure Your WordPress Site: 5 Essential Approaches

WordPress is the web's most popular CMS, but its dominance also makes it a target for attackers. Our eBook will show you how to:

Prevent costly exploits of core and plugin vulnerabilities
Repel automated attacks
Lock down your dashboard, secure your code, and protect your users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A quick step-by-step overview of installing and configuring Carbonite Server Backup.
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

695 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question