2 redundant 2000 servers

[Taishi]

Open for suggestions.

I have a e-commerce project in my Netw and Telocom Security class. My
company has two 2000 servers. My Professor suggested that I add some type
of security between my 2 redundant 2000 servers. Any suggestions will be
greatly appreciated.

Any ideas?

Warm Regards,
T

 

[Oli Restorick [MVP]]

You could try following SEC307 at microsoft.sitestream.com

Regards

Oli

 

[Panda]

Number of ways.

Start with IPSec. Block EVERYTHING with IPSec.

Then open ports that are needed for your services.
Like port 80/443. If you have some tcp/ip protocol/app
that is used between the two servers, secure it with IPSec.

http://www.microsoft.com/windows2000/techinfo/planning/security/ipsecsteps.asp
http://msdn.microsoft.com/library/en-us/dnnetsec/html/SecNetHT18.asp
http://msdn.microsoft.com/library/en-us/dnnetsec/html/HTUseIPSec.asp
http://support.microsoft.com/?kbid=313190
http://support.microsoft.com/default.aspx?scid=313195
http://support.microsoft.com/default.aspx?scid=252735

Enable firewall on both servers. Run security templates from
Windows 2000 Security guide:
http://www.microsoft.com/technet/security/prodtech/windows/secwin2k/default.asp