Solved

IPSEC

Posted on 2011-02-22
6
258 Views
Last Modified: 2012-05-11
The network consists of an internal network and a perimeter network. The
internal network is protected by a firewall. The perimeter network is exposed to
the Internet.
You are deploying 10 Windows Server 2003 computers as Web servers. The servers
will be located in the perimeter network. The servers will host only publicly
available Web pages.
You want to reduce the possibility that users can gain unauthorized access to the
servers. You are concerned that a user will probe the Web servers and find ports
or services to attack.?

/////////////////////////

I agree with the d because others can cause performance issue.
0
Comment
Question by:kunalclk
  • 3
  • 2
6 Comments
 
LVL 18

Accepted Solution

by:
jmeggers earned 250 total points
Comment Utility
Is there really a question here?  At the very least, the servers should go in a DMZ off the firewall so they are protected to some degree.  For web servers, you should also (or perhaps instead) use a web application firewall to look for specific HTTP attacks.
0
 
LVL 39

Expert Comment

by:Krzysztof Pytko
Comment Utility
Yes, answers for this question would be helpful ;)

My opinion (if you're interested :) ) It doesn't matter which access method you will use because when user will be connected to the server it can always run port,services discovery. I don't know if there is anything related with File and Printer sharing? That could disallow port/services discovery

Regards,
Krzysztof
0
 
LVL 2

Author Comment

by:kunalclk
Comment Utility
A. Disable File and Printer Sharing on the servers
B. Disable the IIS Admin service on the servers
C. Enable Server Message Block (SMB) signing on the servers
D. Assign the Secure Server (Require Security) IPSec policy to the servers
0
Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

 
LVL 39

Assisted Solution

by:Krzysztof Pytko
Krzysztof Pytko earned 250 total points
Comment Utility
Definitively A answer :]

Krzysztof
0
 
LVL 2

Author Closing Comment

by:kunalclk
Comment Utility
tnx
0
 
LVL 39

Expert Comment

by:Krzysztof Pytko
Comment Utility
Some article about that (maybe not strictly about reason but explains some issues)
http://support.microsoft.com/kb/199346

Krzysztof
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now