[windows2000] Re: Domain doubts

  • From: "Chris Berry" <compjma@xxxxxxxxxxx>
  • To: windows2000@xxxxxxxxxxxxx
  • Date: Thu, 09 Oct 2003 17:21:12 -0700

From: "Eduardo Freitas" <eduardofreitas@xxxxxxxxxxxx>
I have two separate networks connected to the Internet. The only machine
that has a public IP address for this network is the firewall, which is a
linux machine that is the default gateway for all clients. I was thinking
about the possibility of making one big domain out of those separate
networks. Anybody here has a domain like that? Through the internet? Is it
safe? Any suggestions? As I can see, from the setup I currently have, I was
thinking about making a VPN running from one linux to the other. The problem
I see right now is that Ill have to know the ports I need to forward from
one linux to the other so one network can see the other as the addresses on
both internal networks are non-routable...

This is similiar to my situation. I solved the problem by creating a VPN tunnel using IPCOP. Just put one box at each end, install, configure, activate, you're done. Shouldn't take more than a few hours.

Im pretty scared of putting a Windows box straight on the internet...

It's not THAT bad, as long as you do the big three (firewall, anti-virus, patch OS) then you're pretty safe. Linux is nice, but security is a process not a product, with a few minor exceptions (outlook, sendmail).

Another question... Are there any good guides on securing Windows?

Ton's, what kind of info are you looking for?

Chris Berry
Systems Administrator
JM Associates

"We are successful when our bosses wonder what it is we do all day." -- Tim Mullen

Instant message during games with MSN Messenger 6.0. Download it now FREE! http://msnmessenger-download.com

This Week's Sponsor - RTO Software / TScale
What's keeping you from getting more from your terminal servers? Did you know, in 
most cases, CPU Utilization IS NOT the single biggest constraint to scaling up?! 
Get this free white paper to understand the real constraints & how to overcome 
them. SAVE MONEY by scaling-up rather than buying more servers.
To Unsubscribe, set digest or vacation
mode or view archives use the below link.


Other related posts: