Solved

VPN Setup for new network

Posted on 2014-02-11
7
327 Views
Last Modified: 2014-02-19
Hi Experts,

We are wanting to set-up a VPN to one of our remote sites purely for help desk purposes. I know there is a few ways to setup a VPN connection but we wanted something secure, reliable whilst being cost effective.

The Environment
Onsite there is a Server 2012 Std box with SQL Installed
It is a remote site with a 3G connection (will be using dyn dns)
4 or 5 machines onsite

What are your thoughts on an effective VPN Solution?

Look forward to reading your comments.
0
Comment
Question by:isdd2000
7 Comments
 
LVL 7

Accepted Solution

by:
SvenIA earned 500 total points
ID: 39849465
0
 

Author Comment

by:isdd2000
ID: 39849470
Hi SvenIA,

How secure is Windows VPN, is there any vulnerabilities I need to be aware of to protect my network?
0
 
LVL 7

Expert Comment

by:SvenIA
ID: 39849475
Hi,

I'm not really sure how secure, for example, MSChapv2 is really. You could take a look at Network Access Protection (NAP). Also available in Windows Server 2012.

http://www.windowsecurity.com/articles-tutorials/Windows_Server_2012_Security/understanding-configuring-network-policy-access-services-server-2012-part2.html
0
Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

 
LVL 56

Expert Comment

by:Cliff Galiher
ID: 39849561
If this is *only* for helpdesk purposes and won't be used for regular site data then I'd recommend purpose-built tools for the job. Most of your professional remote support tools have VPN functional as part of their feature set. Look at products like Teamviewer or Yamauchi from LogMeIn. These will provide a better level of user control than a native VPN tunnel.

Native tunnels have their purpose, but are meant to solve a different problem and have a fairly steep curve in both knowledge to set up and ongoing management, monitoring, intrusion detection, and maintenance. The money you save bynusing that "free" role is quickly lost in labor cost. The ROI is just not there.
0
 
LVL 7

Expert Comment

by:SvenIA
ID: 39849576
@ISDD2000

What exactly are you gonna use the VPN for? What kind of helpdesk work are you gonna do with it?
0
 
LVL 1

Expert Comment

by:Lajan Jaleel
ID: 39849626
Dear ISDD2000,

Kindly use any firewalls or routers to do the VPN job for your premises. I will recommend CISCO ASA/Fortigate/Palo-alto for firewalls and CISCO 29XX  for router.

You can use site to site VPN for your sites. If it is more than one site and all the remote sites needs to communicate each other then you can go for a Hub and Spoke VPN.

Kindly let me know in which solution that you are interested with.

Regards,
LAJAN JALEEL
0
 

Author Comment

by:isdd2000
ID: 39849798
Hi Experts,

I need to be able to access an ip device that isn't a computer. Hence the VPN.

So I would like to know the benefits of using a hardware firewall over native windows firewall, with security and management. So far the feedback has been great!
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Ever wondered why Windows 8 and 10 don't seem to accept your GPO-based software deployment while Windows 7 does? Read on.
The reason that corporations and businesses use Windows servers is because it supports custom modifications to adapt to the business and what it needs. Most individual users won’t need such powerful options. Here I’ll explain how you can enable Wind…
In this Micro Tutorial viewers will learn how they can get their files copied out from their unbootable system without need to use recovery services. As an example non-bootable Windows 2012R2 installation is used which has boot problems.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now