Melville
Member
Registered: 4th Jun 03
Location: Newcastle upon Tyne
User status: Offline
|
We are looking to set up a deal to outsource some of our work (not IT outsourcing but accountancy work). We have received an email off the people telling us to set up a vpn connection to an IP address and then transfer the necessary scanned data into a folder via the VPN connection.
Now my only concern is if they can access our network and see anything they should'nt such as our whole client database as they could easily try to poach our clients if they had there details.
Thanks for any help, Mark
|
Tim
Site Administrator
Registered: 21st Apr 00
User status: Offline
|
Using a VPN client or is this a site-to-site VPN they're proposing?
If you're just using the Windows client then simply remove File & Printer Sharing for MS Windows from the bindings. Any other clients should have an option to disable network access (i.e. allow access to/from the vpn only on the endpoint).
If it's site-to-site (i.e. configured on your firewall/vpn server), then what firewall/vpn server are you using?
|
Melville
Member
Registered: 4th Jun 03
Location: Newcastle upon Tyne
User status: Offline
|
Its just through the windows client one. I have a funny fealling however that it wont work due to our firewall and will have to open some ports?
|
Tim
Site Administrator
Registered: 21st Apr 00
User status: Offline
|
Security wise you'll be fine if you just make sure you untick the bindings (file & print sharing). You need to leave the 'client for microsoft networks' enabled to allow you to access their share though. They won't be able to come back up the tunnel to browse your network, unless you have a (stupid) ip_forward config on your machine.
PPTP/L2TP passthrough should be enabled on your firewall to let the traffic through (checkbox if you're using a hardware router). If you're using MS ISA server there's a similar option.
|
