1. My environment is as below:
a. Dedicated LAN at my place in India is connected by a dedicated frame relay link to my principal installation in US.
b. I have no Internet or dial-up/dial-in lines in my place.
c. I have a WIN-NT PDC + BDC that supports common services such as Exchange. This mail system is connected by SMTP to the mail mail server at US by frame relay link.
d. All other servers are in US only.
2. I have a complete system of firewall and Intrusion detection and all systems at the US end.
3. I had proposed that we will have a Checkpoint firewall on my end (i.e India-end). I am told that this is not required as the environment is dedicated and there can be access from no other ways (as there is dedicated frame relay PVC, VPN/3DES encryption and there are firewall and IDS are in the US End). It was pointed out to me that I can have a network IDS if I consider so.
What is the correct stand and why it is so?