Solved

SECURITY RECOMMENDATIONS FOR SERVER 2003

Posted on 2008-10-02
2
194 Views
Last Modified: 2012-05-05
We are currently running an actiontech DSL modem for internet access.  This has a public IP address.  The modem is directly attached to our MS Server 2003, which acts as a Firewall and NAT with DHCP and DNS.  It is also our domain controller and it 'serves' the internet for workstations.  The DSL modem also has a basic firewall on it.

My boss wants to know how 'secure' we are with that set-up.  Also if their are any good, cost-effective pieces of intrusion detection software for server 2003.
0
Comment
Question by:PeelSeel2
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 4

Accepted Solution

by:
deroyer earned 50 total points
ID: 22628139
Try an exterior port scan with GFI LAN guard.  They have a free trial download and it does an excellent scan...  It is a most excellent product...  Here is the link to the free trial http://www.gfi.com/downloads/downloads.aspx?pid=lanss&lid=EN

The best security approach is always, of course, to lock down everything and only open up what you need.  Usually the firewall one the router is sufficient.  GFI will identify port vulnerabilities and you can close them if needed within the firewall
0
 
LVL 96

Assisted Solution

by:Lee W, MVP
Lee W, MVP earned 50 total points
ID: 22629210
2003 has a pretty good built in firewall... still, if you have the budget, it would be better to get a third party device.  My recommendation would be a Unified Threat Management (UTM) device.  Something that provides VPN, Firewall, IPS, IDS, spam filtering, virus checking, and other benefits like a Fortinet device.
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of us need to configure DHCP server(s) in their environment. We can do that simply via DHCP console on server or using MMC snap-in on each computer with Administrative Tools installed in a network. But what if we have to configure many DHCP ser…
Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

729 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question