[Dshield] Best Hardware / Security Set-up for SBS 2003 w/T-1

Dave Brookshire dsb at rlx.com
Mon Mar 22 16:50:42 GMT 2004

If you are strapped $$-wise, then I'd consider using a Linux-box with a T-1 card (perhaps a Sangoma) as your router.  That way you can add IPTables-base firewalling before your MS SBS server.

Just my $0.02.



-----Original Message-----
From: Steve [mailto:itmanager at rjl-pensions.com]
Sent: Thursday, March 18, 2004 2:26 PM
To: 'General DShield Discussion List'
Subject: [Dshield] Best Hardware / Security Set-up for SBS 2003 w/T-1

Thanks for taking the time to read this post.

I am trying to figure out the best way to set-up my new network.

I am going to be bringing in a T-1 connection to my office pretty soon.

I am going to be using MS SBS 2003 with ISA2000, Exchange, and IIS with
Sharepoint Server.

I already have the server and software in place, so I cannot change those
options. I still haven't purchased the router yet though.

I could also use the CSU/DSU from the T-1 connection to route the data into
the Server.

My concerns are security oriented.

Should I use the Cisco router as a transparent interface and let it do the
routing and let ISA server handle the firewall?

Conversely I can set-up the router to also handle the firewall and use it in
conjunction with ISA server.

Does anyone have any tips or suggestions?



Outgoing mail is certified Virus Free.
Checked by AVG Anti-Virus (http://www.grisoft.com).
Version: 7.0.225 / Virus Database: 262.5.4 - Release Date: 3/18/2004

list mailing list
list at dshield.org
To change your subscription options (or unsubscribe), see: http://www.dshield.org/mailman/listinfo/list

More information about the list mailing list