How do we mitigate security risk if we open ports on PCs and enable port forwarding on our router?
Our office Windows 2008 server and Windows XP workstations are connected to the internet through FiOS using the Verizon issued Actiontec MI424WR router. If we add some port forwarding rules to enable remote desktop sessions with certain workstations, what steps need to be taken on the router and/or workstations to prevent rogue connections to our network? What type of security (encryption/authentication) should be implemented?
We also want to open a particular port for an application on our server to communicate with client laptops through the internet. What steps should we take to mitigate risk to our server and prevent port/vulnerability scanning? Do we need to purchase a security appliance?
open ports -or more precise: any connection to the internet- are subject for scanning 'cause it's the nature of such a port to be connected
so scanning is a threat, and threats cannot be mitigated, they simply exist
to mitigate risk, you need to know what your asset is and if your application has vulnerabilities to be exploited, then you can calculate the risk and thnk about proper countermeasures
i.g. a network firewall at the internet boundery should be sufficent
but it's the nature of your configuration then, that some ports are open and hence not blocked by the firewall, you need to harden the application listening on these ports