Re: Network Design

["Chris Berry" <compjma () hotmail com>]

> From: Jeff McClintock <lord_fiery () yahoo com>
> I've been tasked with creating my first ever network.

Congradulations.

> Definitely
> exciting, but lots of stuff to know :)  Given that, I wanted to run this
> by you guys and get some opinions.

Probably a good choice as long as you take them with a grain of salt.

> I work for a small firm of 20-25
> employees that use Windows 2000 and XP exclusively.  They are planning to
> scale to a maximum of 50 people within a year.  They have a full T1, and
> want to have an FTP server, VPN and OWA access.  Web hosting is done by
> their ISP.
>
> Does this seem like a pretty secure set up for them:
>
> Internet -> Firewall -> (DMZ) FTP/OWA server (DMZ) -> DMZ Firewall ->
> Corporate LAN (with Exchange, employee machines, etc...)
>
> If so, any rec's on firewalls for something like this?  Since it's a
> small firm, price is always an issue.

That's overkill for your setup, I recommend IPCOP as a tri-homed firewall.  
It's free, easy to setup and has pretty much all the features you'll be 
needing.

Chris Berry
compjma () hotmail com
Systems Administrator
JM Associates

"Conciousness: that annoying time between naps."

_________________________________________________________________
MSN 8: Get 6 months for $9.95/month. http://join.msn.com/?page=dept/dialup


---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Federal, September 29-30 (Training), 
October 1-2 (Briefings) in Tysons Corner, VA; the world's premier 
technical IT security event.  Modeled after the famous Black Hat event in 
Las Vegas! 6 tracks, 12 training sessions, top speakers and sponsors.  
Symantec is the Diamond sponsor.  Early-bird registration ends September 6.Visit us: www.blackhat.com
----------------------------------------------------------------------------