[Dshield] Best Hardware / Security Set-up for SBS 2003 w/T-1

Dave Brookshire dsb at rlx.com
Mon Mar 22 16:50:42 GMT 2004


If you are strapped $$-wise, then I'd consider using a Linux-box with a T-1 card (perhaps a Sangoma) as your router.  That way you can add IPTables-base firewalling before your MS SBS server.

Just my $0.02.

http://www.sangoma.com/


-db


-----Original Message-----
From: Steve [mailto:itmanager at rjl-pensions.com]
Sent: Thursday, March 18, 2004 2:26 PM
To: 'General DShield Discussion List'
Subject: [Dshield] Best Hardware / Security Set-up for SBS 2003 w/T-1


Thanks for taking the time to read this post.

I am trying to figure out the best way to set-up my new network.

I am going to be bringing in a T-1 connection to my office pretty soon.

I am going to be using MS SBS 2003 with ISA2000, Exchange, and IIS with
Sharepoint Server.

I already have the server and software in place, so I cannot change those
options. I still haven't purchased the router yet though.

I could also use the CSU/DSU from the T-1 connection to route the data into
the Server.

My concerns are security oriented.

Should I use the Cisco router as a transparent interface and let it do the
routing and let ISA server handle the firewall?

Conversely I can set-up the router to also handle the firewall and use it in
conjunction with ISA server.

Does anyone have any tips or suggestions?

Thanks,

Steve

-- 
Outgoing mail is certified Virus Free.
Checked by AVG Anti-Virus (http://www.grisoft.com).
Version: 7.0.225 / Virus Database: 262.5.4 - Release Date: 3/18/2004
 

_______________________________________________
list mailing list
list at dshield.org
To change your subscription options (or unsubscribe), see: http://www.dshield.org/mailman/listinfo/list




More information about the list mailing list