Re: How secure is our server?

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

Thank you Dave.

You have answered some key points for me there I think.

We are currently using just Standard SBS. So I take it a regular
Linksys/Netgear or similar firewall/router would not be suitable to use? The
links you posted are great, and much appreciated, and I am yet to see how
much one of these would cost, but are there other, lower cost, alternatives
on the market. Sadly at the moment we are running on fumes and trying to keep
costs to a bare minimum right now.

I have also tried getting the older ladies that work here to use harder
passwords, but they seem to be against it... Will have to keep on at them and
force it.

Mark

"Dave Nickason [SBS MVP]" wrote:

Is this SBS Standard or Premium? If Premium, do you have ISA 2004
installed? ISA is the firewall component in SBS 2003 Premium, so if you
have that, properly configured with the CEICW, your network should be
secure. If not, you need a good, business-quality external firewall device.
SonicWall and Watchguard are both well regarded, and there are many others
that I'm sure are as good. A $49 or free-after-rebate device from Best Buy
does not qualify as a network firewall.

And, don't forget passwords. If your password is the name of your wife,
pet, or favorite sports team, or if it's easily determined in a dictionary
attack, your network is exposed by the VPN and RWW.

I would certainly not argue against the use of external resources to
determine network security. Personally, I don't use external services,
other than to run a free "Shields Up" scan from www.grc.com once or twice a
year. But I do maintain and monitor my firewall software religiously.


"Mark" <Mark@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:4B529FC0-7372-4257-B071-F63E9DFB43C5@xxxxxxxxxxxxxxxx
We have had an SBS2k3 server running for a couple of years now, and nobody
in
our company is by any means a computer whiz. I just wanted to know how
secure
we are, and how I can help tighten things up now that I am little more
comfortable with things.

Currently using:

SBS 2k3 SP2
2 NIC (external WAN connection plugs straight into cable modem)
Running VPN & we can also Remote WorkPlace into it.

Any guidance is greatly apppreciated.



.

Relevant Pages

  • Re: May need to move from SBS because of connection issues
    ... Just to make sure you are clear regarding port 4125, ... access remote systems and you are behind a firewall on a non-SBS network, ... established that RWW worked TO your SBS network from outside. ... have been proof that the required ports were forwarded to the SBS server. ...
    (microsoft.public.windows.server.sbs)
  • Re: Switching IP address ranges
    ... ISA Firewall Fairy Tales - What Hardware Firewall Vendors Don't Want You to ... - The sonicwall is within my main network because it provides managed ... I have changed LAN IP subnets more than once on some relatively small SBS ...
    (microsoft.public.windows.server.sbs)
  • Re: SBS2008 Single Single NIC only
    ... fire wall to seperate it from the rest of the network. ... You had to go thru the SBS firewall or Natting to get ... I put my printer ouside the SBS domain so both ...
    (microsoft.public.windows.server.sbs)
  • RE: New Install of SBS 2003?
    ... up to now, it's time to move on, along with your move to SBS. ... firewall appliance" is the minimum acceptable device. ... This presumes the network is being kept up-to-date with security ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN Issue
    ... WFB *is* absolutely a network-scanning package and so your viewpoint that "I don't see that as a firewall issue" should be reconsidered. ... WFB *is* only suitable for SBS if you are running WFB-Advanced. ... Office2 has a working VPN connection and Office1 doesn't, so if Office1 is really as software-free as you say, there is only one explanation why one works and one doesn't. ... BUT when looking at Office2 (the other network working fine) I also have the check box "checked" and I can ping www.google.com This is probably neither here nor there because it's just telling me I have an issue with connecting to Office1. ...
    (microsoft.public.windows.server.sbs)