We are a multilingual software shop looking forward a small secured network with 30 HPDX6120 desktops, a server and a pix firewall. As data is very critical, more importance is given to the network and data security. Can you please guide me to how I can build a secured infrastructure with an economical investment?
QUESTION POSED ON: 05 OCT 2005
QUESTION ANSWERED BY: Howard Plumley, Jr.
In engineering, the triangle is FAST or RIGHT or INEXPENSIVE, you may choose two and you ONLY get two choices. In networking, it is EASY – SECURE – INEXPENSIVE and once again you ONLY get two!
The simple inexpensive security solution is: DISCONNECT from the Internet. Of course, this never happens because everybody has to have access.
You have all the parts for a secure system. Here's what to do with them:
- Set the server to require complex passwords, and use Kerberos.
- Use IPsec and certificates to encrypt communications between workstations and your servers.
- Tighten the PIX firewall.
- MOST IMPORTANTLY: Educate your users.
The only expense in this is your labor to make it happen.
|
|
|
