Petri.co.il forums Home Forums Start Page Forums Frequently Asked Questions FAQ Member List Members List
Go Back   Petri IT Knowledgebase Forums > Security > General Security
Petri.co.il is happy to award RicklesP the title of Most Valuable Member !!!
Register Calendar Calendar Search Petri IT Knowledgebase Forums Search Todays Posts Today's Posts Mark Forums Read
Notices

Rogue Systems on the Network

Rogue Systems on the Network

this thread has 1 replies and has been viewed 2294 times

Closed Thread
 
Thread Tools Search this Thread Display Modes
  #1  
Old 12th May 2006, 17:04
rever75 rever75 is offline
Casual
It's not a coincidence
 
 Join Date: Jan 2006
  6 month star 12 month star
 Posts: 71
 Reputation: rever75 is on a distinguished road (20)
Default Rogue Systems on the Network

Hi,
I work for a small corporation and I run security scans on our network on a daily basis. I also monitor our DNS and DHCP Servers to see who is grabbing IP's and registering in our DNS. I have a few computers that will pop up on the network from time to time. These system usually are from our vendors or clients the bring in there laptops and connect to our network. How can I stop them from Registering in our DNS? We us MS Server 2003 DNS AD Intergrated Zone. Also besides implementing a proxy server how can I get it so the do not get any network connection. (I pretty sure proxy server or ipsec Domain Isolation is the only answer). If we were to us use a proxy Server what are people recommendation. Again we are a small corporation of about 200 users.
  #2  
Old 13th May 2006, 01:24
netxt's Avatar
netxt netxt is offline
Member
Here to help
 
 Join Date: Jan 2006
  6 month star 12 month star
 Location: Cluj Napoca, Romania
 Posts: 396
  Send a message via Yahoo to netxt
 Reputation: netxt is a jewel in the roughnetxt is a jewel in the roughnetxt is a jewel in the roughnetxt is a jewel in the rough (307)
Default Re: Rogue Systems on the Network

Hello,
In order to prevent “intruders” to register in DNS configure your AD integrated zone to accept Secure updates only.
http://support.microsoft.com/default...b;en-us;816592

Regarding to isolation, I would recommend you IPSec. In this way not only Internet connection would be protected but internal servers would also not be accessible for clients that is not member of your domain and don’t have the proper IPSec pol. configured.
Let us know if you need help in this direction.
__________________
Regards,
Csaba Papp
MCSA+messaging, MCSE, CCNA
...............................
Remember to give credit where credit is due and leave reputation points where appropriate
.................................
Closed Thread


Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
server 2003 network browsing problem gas55au Windows Server 2000 / 2003 / 2003 R2 2 22nd November 2006 01:30
Cannot Disconnect Network Drives tinypingu Windows Server 2000 / 2003 / 2003 R2 4 7th August 2006 07:00
Can't access one computer in network nick62 DSL, Cable, and other Broadband Issues 30 25th June 2005 22:31
computer description in network places detonator Windows 2000 Pro, XP Pro 0 1st March 2005 23:18
TCP/IP Network Transport failure NYLaw DSL, Cable, and other Broadband Issues 1 21st November 2003 22:10


All times are GMT +3. The time now is 12:39.

Steel Blue 3.5.4 vBulletin Style ©2006 vBEnhanced
Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
 

Valid XHTML 1.0!   Valid CSS!

Copyright 2005 Daniel Petri