How do I Protect server running legacy software on windows domain

rabpwh1000
rabpwh1000 used Ask the Experts™
on
Does anybody know of the best way of protecting a windows 2000 server which is running legacy business software. The server can no longer be patched as recent patches have caused problems with the backend database. Is it possible to place some form of hardware between the server and the rest of the network anfd just allow a limited amount of traffic types to access it?

Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Administrator
Top Expert 2005
Commented:
A small firewall with application based filtering should do so:

See as example:

http://www.juniper.net/us/en/products-services/security/idp-series/idp75/#specifications

Stateful signatures
•    Intelligently track the state of the connection/traffic and scan for attack patterns matching the signature
•    Minimizes false-positives
•    Optimizes performance


Zero-day protection
•    Protocol anomaly detection and same-day coverage for newly found vulnerabilities.

Application awareness / identification
•    Use of context, protocols and signatures to identify applications on any port.
•    Enable rules and policies based on applications.



TolomirAdministrator
Top Expert 2005

Commented:
To ensure your network is always secure, the Juniper Networks IDP Series Intrusion
Detection and Prevention Appliances include the latest signatures and updates available
from our Security Research Lab. Since new attacks can occur on a daily and sometimes
hourly basis, your solution is not complete without the backing of Juniper Networks
Security Research Lab.


Tolomir

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial