SBS 2003 - What Firewall to use to protect server after uninstalling ISA

smtwkla
smtwkla used Ask the Experts™
on
I have sbs 2003 premium technologies. My server has two NICs and I used ISA as a firewall to connect to the internet. Now, I have moved to SonicWALL UTM device. I have disabled second NIC and uninstalled ISA. I have run CEICW Wizard too. It says it can not configure the firewall that comes with SBS as there is no second NIC and I have to configure external firewall. Fine, my sonicwall tz210 is online.

Now, there is no firewall running on the server. What should I do to protect it from attacks from the inside of the LAN?  Is it not possible to turn on windows firewall? Is it safe not to have any firewall at all on the server?

Thanks,
Lakshmi Anand K
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Awarded 2009
Top Expert 2010
Commented:
One would hope that you wouldn't be getting any internal attacks.

You could always use a 3rd party product (Symantec/McAfee/ESET) but the Sonicwall should be sufficient.

Author

Commented:
Thanks demazter,

Is this configuration secure and best practice? Is it usual to run 2003 servers with no firewall, to protect it from the inside?

Thanks again.
Awarded 2009
Top Expert 2010

Commented:
You can use the Windows Firewall (Just checked my lab machine)

Goto Control Palen > Windows Firewall

Author

Commented:
Turning it on just shuts off the machine from the rest of the network. Any pointers to guides on how to configure windows firewall properly on a sbs 2003 server?
 
Awarded 2009
Top Expert 2010

Commented:
Under the exceptions tab ensure file and print sharing is checked.
Awarded 2009
Top Expert 2010

Commented:
There is also a guide here on how to configure the built in fireall: http://technet.microsoft.com/en-us/library/cc672064(WS.10).aspx

Author

Commented:
thanks for the info demazter,

the guide says "In this topology, you cannot use the firewall on the server because that computer is not the gateway between the Internet and the client computers. If you want to use that firewall, you must install a second network adapter in the server and use the topology described in the previous section."

does this mean the guide says to leave the server with no firewall?

File and print sharing is turned on in the exceptions section but still, am unable to access the server properly.
Awarded 2009
Top Expert 2010

Commented:
It certainly does look that way.

I have never enabled the Windows Firewall on an SBS Server and have never experienced any problems :)
Distinguished Expert 2018
Commented:
SBS 2003 (R1) cannot have the windows firewall enabled due to some interaction and dependence on the RRAS service. Different strokes for different folks, but I prefer having a firewall on the server and each client machine. Although you would hope that nothing would be inside your LAN, unless you've invested in managed switches, deploying 802.1X, and other limitations, rogue machines, rogue USB keys, or other circumstances can cause an outbreak behind the thin red line.
As Demazter originally posted (so really, I'm only backing him up here, he should get full credit), you can use a 3rd-party firewall. Most security products include one these days, and since I recommend managed AV products on the client PCs as well, you usually get this feature "for free" so to speak. For example, I find the AV/firewall combination that comes with Symantec's Endpoint Protection suite to be quite good.

Author

Commented:
Thanks guys, I will find and install a 3rd party firewall!

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial