• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 273
  • Last Modified:


We are currently running an actiontech DSL modem for internet access.  This has a public IP address.  The modem is directly attached to our MS Server 2003, which acts as a Firewall and NAT with DHCP and DNS.  It is also our domain controller and it 'serves' the internet for workstations.  The DSL modem also has a basic firewall on it.

My boss wants to know how 'secure' we are with that set-up.  Also if their are any good, cost-effective pieces of intrusion detection software for server 2003.
2 Solutions
Try an exterior port scan with GFI LAN guard.  They have a free trial download and it does an excellent scan...  It is a most excellent product...  Here is the link to the free trial http://www.gfi.com/downloads/downloads.aspx?pid=lanss&lid=EN

The best security approach is always, of course, to lock down everything and only open up what you need.  Usually the firewall one the router is sufficient.  GFI will identify port vulnerabilities and you can close them if needed within the firewall
Lee W, MVPTechnology and Business Process AdvisorCommented:
2003 has a pretty good built in firewall... still, if you have the budget, it would be better to get a third party device.  My recommendation would be a Unified Threat Management (UTM) device.  Something that provides VPN, Firewall, IPS, IDS, spam filtering, virus checking, and other benefits like a Fortinet device.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now