hello, a company have to do maintainance-work on a Windows-system in the internal net. Is there a solution with linux that prevend, they go from this system to others? AFAIK Lids just protect the system it run on (host-based). Any hints? Thanks a lot Peter
Peter Lange
hello, a company have to do maintainance-work on a Windows-system in the internal net. Is there a solution with linux that prevend, they go from this system to others?
Hi Peter, some questions: o Does the maintainance company connect to the machine via internet? o If they do, do you have an firewall with Linux as OS? o Is it possible to connect the windows box that should be maintained directly to the firewall via an additional NIC? If your answer to all questions is yes, connect it directly, deny all traffic from the windows box to your internal network and allow the maintainance company only to contact that single host. If that would not be possible, you can use a tool called ethereal (http://ethereal.zing.org/) - or other tools - to log all the traffic from that box in order to prove that the maintainance company acts illegal - I think that's what you are worried about. Hope that helps, Martin -- martin.peikert@innominate.de system engineer innominate AG clustering & security networking people tel: +49.30.308806-0 fax: -77 http://innominate.de
participants (2)
-
Martin Peikert
-
Peter Lange