zipnotic
asked on
TCP Chat/GPS application security thru firewall
Hello,
Looking for expert thoughts or advice on protocols in a small project. We want to create a Chat/GPS program using TCP/socket connections. The client can type so all other reps can see it. Each service rep will have a laptop with a GPS device. The Client App is planned to talk to a Server App placed within the organization that will relay data to each client. We plan to set up a single use PC to host the Server App and allow/forward the single port traffic thru the firewall to that machine. So all traffic on that port will get sent to that machine. The server/App will have a simple password handshake where the server will reject the client if wrong. Synchronous encryption will be used between server/clients. I've been nosing around looking for information and created a prototype that works but I have the following thoughts to answer.
I'm considering:
1) Should I create a separate VLAN for this box?
2) Should I create a client IP/MAC address pool for security
3) How vulnerable will the server app machine be to attack and what can network guys do about it?
4) What internal programming should the server have to protect itself?
5) What don't I know but should be looking into?
Thanks for thoughts on this.
Looking for expert thoughts or advice on protocols in a small project. We want to create a Chat/GPS program using TCP/socket connections. The client can type so all other reps can see it. Each service rep will have a laptop with a GPS device. The Client App is planned to talk to a Server App placed within the organization that will relay data to each client. We plan to set up a single use PC to host the Server App and allow/forward the single port traffic thru the firewall to that machine. So all traffic on that port will get sent to that machine. The server/App will have a simple password handshake where the server will reject the client if wrong. Synchronous encryption will be used between server/clients. I've been nosing around looking for information and created a prototype that works but I have the following thoughts to answer.
I'm considering:
1) Should I create a separate VLAN for this box?
2) Should I create a client IP/MAC address pool for security
3) How vulnerable will the server app machine be to attack and what can network guys do about it?
4) What internal programming should the server have to protect itself?
5) What don't I know but should be looking into?
Thanks for thoughts on this.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER