search

Eicon Networks S92 Manual de usuario Pagina 119

  • Descarga
  • Añadir a mis manuales
  • Imprimir
  • Pagina
    / 209
  • Tabla de contenidos
  • MARCADORES
    • Valorado. / 5. Basado en revisión del cliente
Vista de pagina 118
YuChakTinMichael‘sGIACGCFWProjectAssignment
Page 119
ConfiguringtheVPNServer
RefertoAssignment1 forinformationonWindows2000hardening.
Shortforvirtualprivatenetwork, VPNisanetworkconstructedbyusingpublicwires
toconnectnodes. VPNsystemsuseencryptionandothersecuritymechanismsto
ensurethatonlyauthorizeduserscanaccessthenetworkandthatthedatacannotbe
intercepted
22
. W2K_VPNisaWindows2000ServercomputerrunningRRAS.It
allowsapredefinednumberof theremoteVPNclientstoconnecttothe
Critical_Resourcesdatabaseapplicationserver.
FirewallStrategyfortheVPNServer:
W2K_VPNsitsbetweenRouter_Econcardandthecoreswitch /Core_Net.Itserves
primarilyasa VPNServerforacceptingremoteaccessrequestsfromtheexternal
partnersandsuppliers.ItdoesnotactasaVPNgatewayfortheinternalclients.
TherearetwoapproachestodeployingafirewallwithaVPNserver.Wecaneither
placethefirewallbetweentheVPNserverandtheintranet,orplacetheVPNserver
betweenthefirewallandtheintranet. ForGIAC,wegowiththefirstapproach:thatis,
weplacethe VPNServerinfrontof theFirewall.
With thisstrategy,weneedtoaddpacketfilterstotheVPNserversInternetinterface
to onlyallowVPNtraffictoenterintoandgoingoutfromtheIPaddressofthat
interface.Forinboundtraffic,whenthetunneleddataisdecryptedbytheVPNserver,
itisforwardedtotheinternal firewall(s)forfurtherfilteringandinspection.Sincethe
onlytrafficcrossingtheVPNserverisgeneratedbyauthenticatedVPNclients,
firewallfilteringcanbeusedtopreventVPNusersfromaccessingspecificintranet
resources
23
.
22
http://www.webopedia.com/TERM/V/VPN.html
23
http://www.microsoft.com/windows2000/techinfo/reskit/enus/default.asp?url=/WINDOWS2000/techi
nfo/reskit/enus/intwork/inbe_vpn_HIDV.asp
Vista de pagina 118
1 2 ... 114 115 116 117 118 119 120 121 122 123 124 ... 208 209

Comentarios a estos manuales

Sin comentarios
  • MELICONI QuikCLOSET ANTIFERENCE Demeter-amps Shanghai koolspace
  • I-mate Teléfonos móviles Craftsman Los termómetros de entorno Pioneer Los sistemas de navegación para automóviles Audio-Technica Equipo de música complementario Perreaux Amplificadores de audio
  • Medtronic Guardian Real-time Alinco DJ-S40 Technics SL-PD8 Samsung DVD-SH873 Mitutoyo VL-50A
  • Peerless PLCM-1 Ficha de datos Sony USM128A Manual de usuario Husqvarna QW14060T Manual de usuario Canon i-SENSYS MF628Cw Manual de usuario