?
Solved

Suggestions for Design and tools to Secure, Analyse and manage Network of 30 systems.

Posted on 2009-04-30
2
Medium Priority
?
354 Views
Last Modified: 2013-12-23
I have to design a Highly secure Local Area network of 35 systems.

There have been data theft issues arising from internal staff and I need to address this problem. I have a tight budget and hence looking for Free or reasonably priced solutions. I not a technical person and would be more happy to work with solutions with freindly graphical interfaces.

I am prepared to install Active Directory, and any other software  or change switches if required.

Current Infrastructure :

3 Switches
3 SQL servers - win 2003
1 Sugar CRM server- Win 2003
1 Linux Fire wall server - Endian
25 desktops - Win xp
5 laptops.- Win xp
0
Comment
Question by:rakesh99
2 Comments
 
LVL 1

Assisted Solution

by:Jaime Campos
Jaime Campos earned 1000 total points
ID: 24274929
This is a LAN network with 35 systems, do you anticipate growth for the future?
Is the data files on a network share drive?
How are your users accessing shared resources?
What is Sugar CRM server?
As far as the Laptops do thay access the network through wireless?
What kind of backup plan do you have in place?

Many option to lock down your network:

You can run DCPROMO on Windows Server 2003 and create a domain.
http://www.petri.co.il/how_to_install_active_directory_on_windows_2003.htm

Once Active directory is installed you can then create Groups/Users and apply NTFS/share permissions to any network shares, to prevent any data to be copied, deleted, etc.. You will also be able to apply Group Policy to any OU/computers. They see what you want them to see on the network.

http://en.wikipedia.org/wiki/Group_Policy

Note: All systems will have to join that domain in order for policy to take place.

Have a Company Network Policy
I would recommend any moble device that gets on the internet anywhere else, to never get back on your network.

All Servers must have a server AV installed and monitored. All desktops and laptops must have a Client AV and monitored. This should be enforced at the gateway, so no AV no access to the internet.

You can utilize what you have currently, however depending on how important your data is, a little investment can go a long way.

nimdatx

0
 

Accepted Solution

by:
rakesh99 earned 0 total points
ID: 24333791
Will these steps help me secure the network completely and manage it well ?
Can you suggest some Tools to analyse traffic and manage the network ?
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

WARNING:   If you follow the instructions here, you will wipe out your VTP and VLAN configurations.  Make sure you have backed up your switch!!! I recently had some issues with a few low-end Cisco routers (RV325) and I opened a case with Cisco TA…
During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question