1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Securing a Server...

Discussion in 'Networking Issues' started by joelinkup, Oct 3, 2008.

  1. joelinkup

    joelinkup LI Guru Member

    As a note I have several WRT54GL Routers available to me, if needed... Currently, I have ONE WRT54GL Router connected to a DSL Modem for Internet Access... The router is also connected to a 16 port switch... The switch has 8 PC's plugged into it... The switch also has ONE Server plugged into it that is used for file sharing by the 8 PC's... The PC's need access to the Internet... The server does not necessarily need access to the Internet but it is OK if it does as long as it cannot be seen or attacked from the Internet...

    I am concerned about someone getting into my server via the Internet to look at information on my server... I have been searching for some time now for a consistent answer on how to protect my server from Internet attacks and snooping... Some say... I am OK as is... Some say add a SECOND Router between the switch and the Server... Some say other stuff... There is No consistent answer... So what do I need to do and how do I need to do it... I greatly appreciate any help you give me... Thanks...
     
  2. fyellin

    fyellin LI Guru Member

    Nominally, the router should protect you. The only traffic that the router should allow through are either: (1) contacts with outside servers that were initiated from the inside or (2) specific port forwards that you create on your web site.

    If you never contact the outside world from your server, and you don't set up any port forwards to your server, then you are safe.

    That said. If you do allow any access to your machines from the outside (for example, you allow remote administration of your router, or you allow telnet'ing into one of your machines) and you have a weak password, then all bets are off.
     
  3. joelinkup

    joelinkup LI Guru Member

    I sincerely appreciate your information... I will add one more final item to the mix... I also have 4 security cameras plugged into the switch... The cameras can be seen via the Internet through strong password security... To facilitate this the router has 4 open high numbered ports that are DIRECTLY AND ONLY open to the specific IP Address of each camera... The server is NOT involved... and there is no recording going on... So, I assume that since the ports are ONLY open directly to the cameras IP addresses and NO WHERE ELSE that I am still in good order... There are NO other open ports... Remember, I am only concerned about the server... Could you please confirm that I am still in good order... Thank YOU...
     
  4. Toxic

    Toxic Administrator Staff Member

Share This Page