Well actually this is not much of a FW1 concern - but a general network
security concern. Do you want to allow dialup access into your network,
behind your firewall? If so, are you will to risk your network security on
MS authentication?
The dial up is basically a back door around your firewall.
Depending on what you need to accomplish with the TS, I would suggest at
least putting it in a DMZ. Even better to make it a standalone system (ie,
not a domain member). But that probably would defeat the purpose of the
request.
> -----Original Message-----
> From: [EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED]]
> Sent: Friday, July 07, 2000 5:16 PM
> To: ''Fw-1-Mailinglist (E-mail)'
> Subject: RE: [FW1] Microsoft Terminal Server Concerns
>
> I hate to make assumptions, but can I assume that since no one responded
> to this, that nobody has any concerns???
>
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of
> Tucker, Greg
> Sent: Wednesday, July 05, 2000 1:58 PM
> To: ''Fw-1-Mailinglist (E-mail)'
> Subject: [FW1] Microsoft Terminal Server Concerns
>
>
> I've had a request to allow dial-up access to Microsoft Terminal
> Server.
>
> Can anyone list concerns, or point me to a sight the discusses what
> security issues to be concerned about when allowing this capability?
>
> Thanks.
>
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
