RE: Network Design

["DeGennaro, Gregory" <Gregory_DeGennaro () csaa com>]

The setup looks good, make sure to use IDS no matter what Gartner states.
IDS (NFR-Network Flight Recorder or Cisco for Cost of ownership reasons) is
a tool not "does it all" device to detect malicious activity.  Continuous
monitoring, patch integration, replacing legacy technology, education,
upgrading, and due diligence is how you stay ahead of the crackers.

Firewall Recs:

If you are using Cisco and believe in Cost of Ownership, then go with the
PIX.

However, Secure Computing's Sidewinder and Cyberguard have the least amount
of known or major vulnerabilities and exploits.

Regards,

Greg DeGennaro Jr., CCNP
Security Analyst


-----Original Message-----
From: Jeff McClintock [mailto:lord_fiery () yahoo com] 
Sent: Monday, August 25, 2003 12:51 AM
To: security-basics () securityfocus com
Subject: Network Design



Hello,

I've been tasked with creating my first ever network.  Definitely 
exciting, but lots of stuff to know :)  Given that, I wanted to run this 
by you guys and get some opinions.  I work for a small firm of 20-25 
employees that use Windows 2000 and XP exclusively.  They are planning to 
scale to a maximum of 50 people within a year.  They have a full T1, and 
want to have an FTP server, VPN and OWA access.  Web hosting is done by 
their ISP.

Does this seem like a pretty secure set up for them:

Internet -> Firewall -> (DMZ) FTP/OWA server (DMZ) -> DMZ Firewall -> 
Corporate LAN (with Exchange, employee machines, etc...)

If so, any rec's on firewalls for something like this?  Since it's a 
small firm, price is always an issue.

thanks
jm

---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Federal, September 29-30 (Training), 
October 1-2 (Briefings) in Tysons Corner, VA; the world's premier 
technical IT security event.  Modeled after the famous Black Hat event in 
Las Vegas! 6 tracks, 12 training sessions, top speakers and sponsors.  
Symantec is the Diamond sponsor.  Early-bird registration ends September
6.Visit us: www.blackhat.com
----------------------------------------------------------------------------

---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Federal, September 29-30 (Training), 
October 1-2 (Briefings) in Tysons Corner, VA; the world's premier 
technical IT security event.  Modeled after the famous Black Hat event in 
Las Vegas! 6 tracks, 12 training sessions, top speakers and sponsors.  
Symantec is the Diamond sponsor.  Early-bird registration ends September 6.Visit us: www.blackhat.com
----------------------------------------------------------------------------