Michael,
A modem pool is probably the safest, assuming that none of your clients will be using
laptops and not simultaneously surfing the internet through another means (i.e. an
ethernet
card).
The only other means I would even venture to suggest would be for your traveling staff
to carry token generators such as the SecurID card (I think the company is Security
Dynamics but RSA may have purchased them a few months back if my memory serves me
correctly). Then your clients can VPN in to your network.
The second approach gives you a few advantages. First, you are not an ISP for your
clients. This means that you will most likely not have to burden your link to the
Internet
with the Internet traffic, only the internal network. Secondly, your travelers are
not limited to the 56k V.90 bandwidth of a modem. If they have the advantage of
having a DSL
line, cable modem, or an Ethernet pipe inside a customer location, etc. They can have
broadband access to your network.
If you have relatively small amounts of data for your clients to access, and you would
not expect your clients to surf the net over your dial up, then I would probably try to
set up some type of 800 number to your modem pool. This is the easiest, and safest
method in the long run.
Geoffrey Gates
Network Systems Design
Lockheed Martin, NE&SS
>
> ------------------------------
>
> Date: Mon, 3 Apr 2000 11:03:26 -0700
> From: "Michael DeSimone" <[EMAIL PROTECTED]>
> Subject: Remote access
>
> I need to set up remote access to my internal network for randomly
> scattered, mostly unskilled people(sales) and some developers. These folks
> will be traveling coming in via various ISPs (mostly UUNET and GTE pops). I
> will have 0 control over their systems, for now. Probably mostly
> Windows 9x/NT 4.0 . What is the best way to get these folks in with out
> compromising too much if anything. And also not spending a fortune. My
> network is an office environment NAT through a Linux box running Trex,
> through a T1 but I can change that if I need to. I think the easiest way is
> to toss in a damn modem bank and make them dial in, my on little ISP so to
> speak.
>
> Thanks,
> Michael DeSimone
>
> - -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
