- 10 ways the Chinese Internet is different
- Hacker writes rootkit for Cisco's routers
- Verizon snares $678 million federal network deal
- Cisco loses $2 million order to Nortel
- HP buys EDS for $13.9 billion
Hacker writes Cisco rootkit; Microsoft launches online telescope. Listen now!
Wireless dangers at airports. Listen now!
Most companies have a solid disaster recovery plan in place to handle a "complete failure" of its Active Directory, which is really quite rare. What most recovery plans are missing, and the most common scenario, is a means to efficiently restore single directory objects. In this paper, we'll explore what most disaster recovery plans already address, highlight potential weak points, and suggest solutions that help fill those gaps-without requiring you to completely re-do your existing plan.
Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.
Watch Raven Zachary, Research Director for Open Source at the 451 Group, an independent IT analyst firm, discuss the emergence of enterprise Linux and the role of Oracle Unbreakable Linux support.
hello cisco
- Anonymous
Management is finally listening to my concerns about securing any external access to the network. They understand that some
additional software may be necessary on remote PCs accessing our network and that some training may be needed by remote users
as well as the staff administering the VPN system. In doing research on the best system to purchase for our needs, I have
seen two - one that mentions the use of IPSec and the other, an SSL -based VPN. Which is best?
- Via the Internet
The IPSec-based VPN is what you might think of as the "conventional"-type VPN. This can use up to Triple-DES encryption to secure the communications from the remote users to your network. This requires
that software be installed on remote users’ machines. This can add additional steps users must take before gaining access
to your network. Examine different vendors’ solutions in this area and you should be able to find one that will allow you
to send a CD or floppy with a scripted install that would require little to no input from the user during the installation
process.
When implementing this type of solution, you may want to think about mandating some type of software policy for remote users
that requires you be notified of software before it is installed on machines or that your department does the installation.
While this may seem like unnecessary overhead, it can help you catch a problem before it becomes an issue. I have seen situations
where seemingly "innocent" software, such as some of the game simulation packages or drivers for some multifunction printers
(i.e. printer/copier/scanner), has caused the VPN software to stop working.
The other VPN solution using SSL doesn’t require any software installation on remote PCs. Since this option uses a Web browser
and an SSL connection to establish the connection, you will need to look at what resources users need to access to know if
this will work. Since you won’t be able to map any drives directly (unless the SSL VPN vendor has included additional functionality
in its product), you’ll be limited to whatever Web-based applications your company is currently using. This type of remote
access can be cheaper to implement and/or operate than its IPSec counterpart but with tradeoffs that may limit how well it
can address your remote access needs.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com The Industry Standard IDG List Services |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
