|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Use of L2TP in isolated W2K3 AD
From: Milos Puchta (puchta
cslab.felk.cvut.cz)
Date: Tue Jun 08 2004 - 01:47:03 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
1.
Imagine a large network that is more or less opened to the Internet.
I mean that there is packet filtering for some ports, one subnet
is blocked from the access from the Internet but due to the routing
between subnets all subnets are opened....
2.
I can do nothing as to the changes in the structure of LAN :-(((
except asking for blocking direct access to the selected computers.
(No private LAN for private range of ip, no blocking routing,... :-(( ...)
3.
There are various services and operating system on the LAN,
including Windows, FreeBSD, Novell, SUN,VMS etc
4.
I "develop" and maintain Active Directory (Windows 2003 Server and Windows
XP Professional) in this structure. Windows XP clients should reach
data on various system (data and licenses on license servers).
Because of security problems I consider the isolation of domain controllers
behind
internal ISA firewall and Windows clients would use L2TP protocol, as if
they were
accessing domain controllers and file servers from the Internet.
Is this solution in my case?
Thanks for your opinion and qualified guess.
Regards,
Milos
---------------------------------------------------------------------------
---------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]