Re: SBS2000 and a DMZ
- From: "Javier Gomez [SBS MVP]" <javier_gomez@xxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 21 Apr 2005 16:21:39 -0400
> At a technet all day seminar 6 months ago the presenter discussed the MS
> direction of creating this DMZ scenario and allowing the network
> administrator to REQUIRE a current MS patch level and also the ability to
> validate AV client and definition level BEFORE passing the mobile user
> into
> the mission critical network.
I believe you are refering to Network Access Quarantine Control...
http://www.microsoft.com/windowsserver2003/techinfo/overview/quarantine.mspx
Supposedly this was greatly improved in SP1.
> The scenario would allow the netadmin to "push" out the required updates
> to
> the mobile user and then allow them access.
I'm not sure how this works but I know is not easy to setup... it takes
time. I also don't think it actually pushes anything, more like it verify
that you are protected.
> The remote/mobile users can trapse all over the internet and collect all
> type of "bad" stuff but would be "cleaned up" before they are let back
> into
> the "house". Just like my sons .... they'd go out and get full of mud ,
> but
> My wife made them strip down to the scivvies in the "mud room" and then
> sent
> them to the shower before letting them back into the house. Does she know
> Bill Gates or what!
Interesting analogy :-)
--
Javier [SBS MVP]
www.msmvps.com/javier
<< SBS ROCKS!!! >>
.
- References:
- SBS2000 and a DMZ
- From: Rick Dilley
- Re: SBS2000 and a DMZ
- From: Javier Gomez [SBS MVP]
- Re: SBS2000 and a DMZ
- From: Rick Dilley
- Re: SBS2000 and a DMZ
- From: Dave Stoecker
- Re: SBS2000 and a DMZ
- From: Rick Dilley
- SBS2000 and a DMZ
- Prev by Date: Re: Recording LogonLogoff
- Next by Date: Re: SBS2000 and a DMZ
- Previous by thread: Re: SBS2000 and a DMZ
- Next by thread: Re: SBS2000 and a DMZ
- Index(es):
Relevant Pages
|
