By IHR - Wednesday, June 27, 2012 10:05:45 AM
Hi all,
Following on from my VNC post last month, I've been trying to figure out a way to remotely access our Myriad PCs. The main problem is that they are on their own network, i.e. not connected to the Internet. I was thinking of using a server, which is connected to the internet, installing a second NIC and connecting this to the Myriad network. This will keep the Myriad PCs from the Internet, and make it harder for hacking. However, if a virus gets onto the server, it can then spread onto the Myriad PCs through the second NIC...and the two Myriad PCs don't have any form of anti-virus. I was going to use a router, as a switch, and use it's firewall to block all ports except for the two ports I need (i.e. VNC, and the time server port). But, of course, that won't work as the firewall won't work between local connections, but just from the modem side into the router (which won't be connected). The only option I can think of is a firewall on the server...but it is running Windows Server 2003, and I haven't been able to find any firewall software for it. We have other machines, but these are used by the membership in general, and I don't trust them to leave the firewall running. Cheers, Gerald. Vice-Chairman Inverness Hospital Radio
|
By philedmonds - Sunday, July 1, 2012 11:38:19 AM
Assuming you are on a budget and professional kit is out of the question, then you could do what you describe with a domestic 'cable router' - which has ethernet LAN and WAN connections, such as this item: http://www.microdirect.co.uk/Home/Product/49540/TP-Link-Cable-DSL-Router-for-Home-with-Built-inWhichever way you do you want to run your VNC on non-standard parts (i.e. not 5800,5900) - to avoid casual port scans - if you can also limit the IP addresses that can connect (which can be a pain if you need to connect from none static IP's, but any restriction to the 'whole world' being able to connect would be good.)
|
|