Tips on safeguarding a VPN between two Windows Server 2003

975 pts.
Tags:
Cisco
VPN
VPN security
Windows Server
Windows Server 2003
Windows Server 2003 administration
Is it possible for someone to crack into our VPN between two Windows server 2003? Should we invest in Cisco hardware?

Basically, what are our risks? What should we safeguard against?

ASKED: June 2, 2011  7:57 PM
UPDATED: June 22, 2011  12:45 PM

Answer Wiki

Thanks. We'll let you know when a new response is added.

Anything…..ANYTHING! can be cracked given the right motivation, tools and time.

encrypted VPNs are obviously better at protecting you. You can use Cisco but they have had some appliances with gapping holes in security before now so you’re potentially not getting any benefit other than they are a good strong company with good support.

As soon as you set up a VPN you are sending data out into the wild. It is controlled in that you are sending it directly to the other site however it is still a high risk.

What you need to do is either accept the risk that someone could be sitting ‘man-in-the-middle’ style collecting every packet of data sent.

So what you need to safeguard against are those packets of data being readable. Encrypt whenever possible, with as higher incryption bit as possible. Make it a ball ache for anyone that does get any of your data to read it.

Their are vendors out there that specialise in setting up secure VPN’s (for clients such as banks, financial institutions etc…). If you are unsure of what you are doing or unsure of the risks book a consultancy day with one of these companies. It’ll be expensive so it realy boils down to what risk are you prepared to except and/or how much are you willing to spend.

Discuss This Question: 2  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Guardian
    Firstly which devices are in place for your VPN? Depending on the vendor you prefer but if you're comfortable with CISCO devices then that's fine. Primarily you'll need to encrypt your data transfer between the servers and also use some security feature.
    900 pointsBadges:
    report
  • TeachMeIT
    [...] 7. Guardian had a few questions before offering tips on safeguarding a VPN between two Windows Server 2003. [...]
    0 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following