Results 1 to 4 of 4

Thread: Securing Traffic to Remote Offices

Hybrid View

  1. #1
    Some Assembly Required ShagDevil's Avatar
    Join Date
    Nov 2002
    Location
    SC
    Posts
    718

    Securing Traffic to Remote Offices

    Hey guys. I've been researching the snot out of this and I'm looking for some advice.

    I'm managing 3 offices over a slow link. It's a T-1 but, we're sharing so much bandwidth, we average between 50-100KBs inter-office speeds (we're inside a portal and share bandwidth with many other departments. And yes, I said 50-100 KBs over a T-1).

    I'm looking to secure only LAN traffic over this link (Not internet bound traffic). What direction would you guys go? IPSec via Group Policy? Hardware Firewall with VPN? Software based VPN?

    I don't need a full-blown solution, just a general direction to research. Thanks.
    The object of war is not to die for your country but to make the other bastard die for his - George Patton

  2. #2
    Senior Member
    Join Date
    Mar 2004
    Location
    Colorado
    Posts
    421
    How many concurrent users talking over links as an average?
    What applications/protocols will be using links?
    VPN overhead might chew up more avail bandwidth than you want.
    Do you have budget? Do your policies dictate a commercial solution with support contracts?

  3. #3
    Some Assembly Required ShagDevil's Avatar
    Join Date
    Nov 2002
    Location
    SC
    Posts
    718
    How many concurrent users talking over links as an average?
    40-50
    What applications/protocols will be using links?
    NetBIOS, FTP, File Sharing, Telnet, WSUS Servers, Symantec Servers, ICMP, all standard Server <-> Client Domain Traffic
    VPN overhead might chew up more avail bandwidth than you want.
    I was thinking of (3) Fortinet 80c hardware devices at each of the 3 gateways. Using IPSec VPN. The VPN overhead is what I'm concerned with.
    Do you have budget? Do your policies dictate a commercial solution with support contracts?
    Not much of a budget to speak of. A $2000 solution would require effort to get approved. No dictated solution to speak of.
    The object of war is not to die for your country but to make the other bastard die for his - George Patton

  4. #4
    Senior Member
    Join Date
    Mar 2004
    Location
    Colorado
    Posts
    421
    The Fortigates should do as good as any.
    Can you get one in on good RMA terms and try it?
    Or do you have a spare boxe(s) around to give OpenVPN a spin? To test slowdown anyway...

Similar Threads

  1. Windows Error Messages
    By cheyenne1212 in forum Miscellaneous Security Discussions
    Replies: 7
    Last Post: February 1st, 2012, 02:51 PM
  2. Trojans - Ports
    By GbinaryR in forum AntiVirus Discussions
    Replies: 11
    Last Post: October 30th, 2008, 09:33 AM
  3. Port List
    By ThePreacher in forum Miscellaneous Security Discussions
    Replies: 17
    Last Post: December 14th, 2006, 09:37 PM
  4. Network Security made easy?
    By Tiger Shark in forum Microsoft Security Discussions
    Replies: 5
    Last Post: January 14th, 2005, 08:47 PM
  5. The Worlds Longest Thread!
    By Noble Hamlet in forum AntiOnline's General Chit Chat
    Replies: 1100
    Last Post: March 17th, 2002, 09:38 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •