Firewall Wizards mailing list archives

Re: Securing Dial-In Access to network

From: "Rodney van den Oever" <roever () nse simac nl>
Date: Mon, 26 Apr 1999 20:36:03 +0200

A customer wants to use his FW-1 (on Sun Netra / Solaris) to protect his

service etc. ISDN-Dial-In

Lines in the corporate network (approx. 5MBit. total).

The connections should be crypted and after authentification the access

should only be granted to a

Use CheckPoint's SecuRemote client. Better upgrade to version 4 and request
DES encryption, maybe even Triple-DES.
Either use a OTP-schema (via RADIUS) or certificates for strong
authentication.

predefinded Host in an predefined VPN within the corporate network.


Create user-groups that have access to a specific service, you'll still be
able to define user-specific rights.

--
Rodney van den Oever / 0x06 3547CA1 / PGP Key ID 0x0A6CCE53
'Windows 2000: the 1623 part Swiss Army knife for customers who only want to
pare an apple'

Current thread:

Securing Dial-In Access to network Eschweiler (Apr 26)
- <Possible follow-ups>
- Re: Securing Dial-In Access to network Rodney van den Oever (Apr 26)