General discussion

Locked

RAS service on a firewall for access via

By patrick.branan ·
Hello,

I have a question about the security implecations of putting a RAS sever on
a fire wall. We are running firewall 1 on a stand alone pc. I am exploring the
idea of putting RAS services on that machine to allow remote access via the internet. Some of my superiors have reservations about doing this and using RAS period. Some believe that it will allow direct access to our server.

My proposed plan is to put RAS on the firewall and have station restrictions
for added security. This way, a user must supply the correct username and password,
and be on an approved station and RAS user in order to gain remote access to our system.
From my understading, a user accessing the system via RAS will have no more rights than if they connected via the LAN.

The remote user would connect to an ISP then use the RAS client to connect to one of our public IP addresses to gain authentication and access to our network. Hopefuly this would provide a low cost, secure remote access method for our users.

This conversation is currently closed to new comments.

6 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

RAS service on a firewall for access via

by timber In reply to RAS service on a firewall ...

I don't directly know the answer to your question seeing how I just started using
FW-1. I found 99% of my questions have been answered at this website.
www.phoneboy.com/fw1/
This is a very in depth FAQ with a decent search engine.....
Hope this helps....

Collapse -

RAS service on a firewall for access via

by patrick.branan In reply to RAS service on a firewall ...
Collapse -

RAS service on a firewall for access via

by skatedog In reply to RAS service on a firewall ...

Hi,

I am just posting to suggest you use VPN to connect your remote users to your firewall. This seems to be a good solution since they are first signing on to an ISP anyway. If you install the VPN adapter on the user's system then make a new connection using the VPN adapter and specify the firewalls IP address then it is very secure. You may want to check the connection's properties to make sure that the options to encrypt the password and the data are checked. This should provide a very secure way for your users to log on remotely. The users will have no more access rights than they would if they were logging on from a workstation there in your office.

Collapse -

RAS service on a firewall for access via

by patrick.branan In reply to RAS service on a firewall ...
Collapse -

RAS service on a firewall for access via

by skatedog In reply to RAS service on a firewall ...

Hi,

I am just posting to suggest you use VPN to connect your remote users to your firewall. This seems to be a good solution since they are first signing on to an ISP anyway. If you install the VPN adapter on the user's system then make a new connection using the VPN adapter and specify the firewalls IP address then it is very secure. You may want to check the connection's properties to make sure that the options to encrypt the password and the data are checked. This should provide a very secure way for your users to log on remotely. The users will have no more access rights than they would if they were logging on from a workstation there in your office.

Collapse -

RAS service on a firewall for access via

by patrick.branan In reply to RAS service on a firewall ...
Back to Windows Forum
6 total posts (Page 1 of 1)  

Related Discussions

Related Forums