Go Back   TechArena Community > Technology > Networking & Security
Become a Member!
Forgot your username/password?
Register Tags Active Topics RSS Search Mark Forums Read

Sponsored Links



How to Protect a Network from Unmanaged Clients

Networking & Security


Reply
 
Thread Tools Search this Thread
  #1  
Old 28-10-2009
Member
 
Join Date: Jul 2009
Posts: 154
How to Protect a Network from Unmanaged Clients
  

Hello,
I have setup a wifi network at my office. We have very important data at some system. So we want to protect this from Unmanaged Clients on network. We are not rely on antivirus and security system.How we can protect our network from Unmanaged Clients. Any one can know this ? Any suggestion??

Reply With Quote
  #2  
Old 28-10-2009
Member
 
Join Date: Jan 2006
Posts: 3,779
Re: How to Protect a Network from Unmanaged Clients

Solution is to deploy the anonymous access WAP on a segment perimeter network that has no access to the corporate network. This allows you to offer Internet access to your guest users without incurring the administrative overhead to give users WEP and WPA and partitioning the corporate network from these unmanaged clients. For example, you can create a wireless DMZ on an ISA firewall multihomed as discussed in the article "Providing Internet access while securing your network using a wireless companies DMZ.Many provide WAP access anonymous for the convenience of clients and consultants. Even if the anonymous access WAP is a great convenience to your customers, they can create a significant security threat to enterprise network customers as guests of the connection they are not managed, and there is a chance that these hosts are compromised by worms, viruses and Trojans.
Reply With Quote
  #3  
Old 28-10-2009
Member
 
Join Date: Apr 2008
Posts: 3,344
Re: How to Protect a Network from Unmanaged Clients

WAP corporate network does not allow anonymous connections. You will need the user or machine authentication for corporate deployment highly secure wireless. For example, we use the user authentication and EAP computer certificate when deploying enterprise deployments of wireless. The authentication certificate means that only managed machines and users can connect to the corporate network via the WAP business.
However, the convenience offered by the anonymous access WAP to guests can also be useful for employees such as executives who bring in unmanaged, personal laptops from home. These machines are not provisioned to use the WAP business, so they have to use anonymous access WAP. You can provide these users access the anonymous access wireless DMZ segment by having them use VPN connections to the corporate network. The VPN link secures the connection and prevents intruders from intercepting communications with resources on the corporate network. For more details on this configuration, see TechProGuild Allow VPN access to your wireless network from a DMZ.
Reply With Quote
  #4  
Old 28-10-2009
Member
 
Join Date: Apr 2008
Posts: 3,426
Re: How to Protect a Network from Unmanaged Clients

A particularly effective method you can use to secure your network against unauthorized users wireless IPSec-based domain isolation. IPSec domain isolation is a technique that isolates domain servers or all domain member computers from untrusted machines. IPSec domain isolation is one of the most effective methods available today for Windows networks to protect your critical servers customers not only rogue wireless but all unsecured computers on the corporate network. You can use your firewall application layer access controls to block those devices to connect to the Internet. For example, you can configure the firewall ISA Server to require user authentication before enabling outbound access from the corporate network to the Internet. For Web protocols, you can configure a firewall application layer controls to block user-agent headers sent by handheld devices or force integrated authentication to the firewall before allowing the outgoing access. Since handheld devices can not be domain members, any attempt to connect to the Internet will be blocked.
Reply With Quote
Reply

  TechArena Community > Technology > Networking & Security
Tags: , , , ,



Thread Tools Search this Thread
Search this Thread:

Advanced Search


Similar Threads for: "How to Protect a Network from Unmanaged Clients"
Thread Thread Starter Forum Replies Last Post
SBS 2008 Slow Network Performance with Windows XP Clients MilesAway Small Business Server 13 09-05-2012 05:48 PM
Is it possible to scan for unmanaged clients in SEPM 12.1.671.4971 Vascon!cell Networking & Security 6 14-02-2012 02:41 PM
Managed switch network speed vs. unmanaged switch network speed LLoLL Networking & Security 6 22-07-2011 07:28 PM
maximum number of clients can connect to a shared printer within the network take__me__away Networking & Security 4 24-09-2009 09:07 AM
Unable to browse network drives via over VPN on Vista clients Dharitree AntiVirus Software 3 02-09-2008 11:07 PM


All times are GMT +5.5. The time now is 08:09 PM.