Home page logo
/

basics logo Security Basics mailing list archives

Re: Setting up secure windows xp network
From: Chris R <admin () securityindex net>
Date: 22 May 2003 18:07:26 -0000

In-Reply-To: <IDEFJDMDNDGKFEIHJDJOCEOCCGAA.sml () ukf net>

Anna,

   I think the reason you could not use the internet before using norton 
and macafee firewalls is because they arent very configurable software 
firewalls. They are made for the typical end users machine, i dont 
reccomend them on a gateway. These types of firewalls typically block all 
outbound packets not from the IP address of the gateway they are installed 
on. As far as security policies go, i would strengthen your authorization 
policies. If your users are logging in from the outside make sure their 
passwords meet certain requirements such as 6 alpha numeric characters 
long minimum. I assume this 2000 box is windows 2000 server. The security 
policies on it are plentiful. You can implement IPsec as well. The 
firewall issue i would reccomend using is microsofts own ISA server. It 
installs nicely on 2000 and you can customize both inbound and outbound 
packet restrictions as well as policies on each ethernet card in the box. 
I belive ISA server helps you setup VPN's as well, but i havent worked 
with it in quite some time. Hope this helps.

-- chris


Received: (qmail 12243 invoked from network); 22 May 2003 17:08:09 -0000
Received: from outgoing3.securityfocus.com (205.206.231.27)
 by mail.securityfocus.com with SMTP; 22 May 2003 17:08:09 -0000
Received: from lists.securityfocus.com (lists.securityfocus.com 
[205.206.231.19])
      by outgoing3.securityfocus.com (Postfix) with QMQP
      id 82303A3162; Thu, 22 May 2003 10:13:18 -0600 (MDT)
Mailing-List: contact security-basics-help () securityfocus com; run by ezmlm
Precedence: bulk
List-Id: <security-basics.list-id.securityfocus.com>
List-Post: <mailto:security-basics () securityfocus com>
List-Help: <mailto:security-basics-help () securityfocus com>
List-Unsubscribe: <mailto:security-basics-unsubscribe () securityfocus com>
List-Subscribe: <mailto:security-basics-subscribe () securityfocus com>
Delivered-To: mailing list security-basics () securityfocus com
Delivered-To: moderator for security-basics () securityfocus com
Received: (qmail 17078 invoked from network); 22 May 2003 14:31:35 -0000
From: "SML" <sml () ukf net>
To: <security-basics () securityfocus com>
Subject: Setting up secure windows xp network
Date: Thu, 22 May 2003 15:57:08 +0100
Message-ID: <IDEFJDMDNDGKFEIHJDJOCEOCCGAA.sml () ukf net>
MIME-Version: 1.0
Content-Type: text/plain;
      charset="windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0)
Importance: Normal
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400

Hello list.
I'm in the process of securing Windows xp prof network, consisting of 5
computers.
We use "workgroup" configuration.
Also the computers are conected to internet through windows 2000 gateway
computer with 2 network cards, where one card connects to ADSL router. NAT
software is in place on the gateway.
I'd much appreciate if somebody could point me to the internet recourses, 
or
give advise on how to make the most of windows own security features,
policies etc. Also what software firewall could we use on the gateway, 
since
after trying norton and mcaffe firewals, we couldn't access the intrenet.

Thanks,
Anna



--------------------------------------------------------------------------
-
Thinking About Security Training? You Can't Afford Not To!

Vigilar's industry leading curriculum includes:  Security +, Check Point, 
Hacking & Assessment, Cisco Security, Wireless Security & more! Register 
Now!
--UP TO 30% off classes in select cities-- 
http://www.securityfocus.com/Vigilar-security-basics
--------------------------------------------------------------------------
--



---------------------------------------------------------------------------
Thinking About Security Training? You Can't Afford Not To!

Vigilar's industry leading curriculum includes:  Security +, Check Point, 
Hacking & Assessment, Cisco Security, Wireless Security & more! Register Now!
--UP TO 30% off classes in select cities-- 
http://www.securityfocus.com/Vigilar-security-basics
----------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]