Great ideas!!! The answer is yes to the idea of a VLAN. There are multipule locations with 1600 users overall. There is one VLAN, VPN, and Citrix in this environment. The network team is top notch and very capable. When I go head to head with them I want it to be meaningful and I want to have all my ducks in a row.
I believe that telnet in general is a bad idea and that implementing a secure protocol is more a nucience to them than something that they can not do. I am resonable and I have bigger fish to fry, but wanted other opinions on where to put this on my wish list to make the enterprise more secure.