Presentation is loading. Please wait.

Presentation is loading. Please wait.

Windows Small Business Server 2003 la sicurezza garantita e pre-configurata per i servizi Exchange, l'accesso remoto e l'amministrazione della rete Alessandro.

Published byGabriella Bishop Modified over 11 years ago

Similar presentations

Presentation on theme: "Windows Small Business Server 2003 la sicurezza garantita e pre-configurata per i servizi Exchange, l'accesso remoto e l'amministrazione della rete Alessandro."— Presentation transcript:

1 Windows Small Business Server 2003 la sicurezza garantita e pre-configurata per i servizi Exchange, l'accesso remoto e l'amministrazione della rete Alessandro Appiani Microsoft Certified Partner

2 Agenda Componenti tecnologici per la sicurezza Sicurezza perimetrale Sicurezza nelle comunicazioni di rete Sicurezza interna Policy, Auditing & Control Le aree pre-configurate in Windows Small Business Server 2003 Network design & Architecture Infrastruttura Exchange Remote Access Active Directory Tools Live Demo...

3 Componenti tecnologici per la sicurezza Perimetrale Firewalling E-mail protection Comunicazioni Encryption Secure Socket Layer Virtual Private Network Remote Access Rete interna Active Directory / Security Realm Policy (User, Computer,...) Auditing Content inspection (Antivirus)

4 Sicurezza perimetrale

5 Firewall Uno o più componenti/dispositivi che controllano laccesso da una rete protetta verso/da Internet e/o altre reti * * Zwicky, Cooper, Chapman – Building Internet Firewalls – OReilly 1995/2000

6 Filters and Network Access Streaming Media SMTP DNS Intrusion Firewall Access Policy Allow HTTP All Destinations Internal/Protected Network External/Unsecured Network Rules Applied Streaming Media SMTP

7 Firewall in Small Business Server A Controlled Point of Access for All Traffic that Enters the Internal Network A Controlled Point of Access for All Traffic that Leaves the Internal Network Inside/Outside Windows Server 2003 ISA Server

8 Sicurezza nelle comunicazioni

9 Quali problemi abbiamo con una comunicazione di rete che usa connettività pubblica come Internet? Network Monitoring Data Modification Identity Spoofing Man-in- the-Middle Password- based Password- based

10 Encrypts Data at the Application Layer SSL TLS Encrypts Data at the Network Layer Tunneling Protocol IPSec La soluzione: la cifratura dei dati trasmessi Encrypted IP Packet

11 Cifratura del traffico Application-Layer Network-Layer: Virtual Private Network (VPN) ApplicationApplication SSL/TLSSSL/TLS TCP/UDPTCP/UDP IP/IPSec Link Layer Physical Layer Application SSL/TLS

12 Sicurezza interna e controllo Active Directory!

13 Windows Small Business Server 2003 Componenti di sicurezza setup & configuration

14 Scenario di connessione router Interne t Router (ISP) SBS rete pubblica (es: 193.205.245.24/29) rete privata 10.0.1.0/24.2 xDSL Fibra ottica ISDN... rete pubblica (con NAT) (es: 192.168.0.0/24) azienda.local

15 To Do List

16 The Configure E-mail and Internet Connection Wizard This wizard provides on-screen instructions to configure the following server settings: Networking Firewall Secure Web publishing E-mail Networking Firewall Secure Web publishing E-mail

17 Network Connections Broadband connection types include: Direct broadband connection Local router Broadband connection that requires a user name and password Direct broadband connection Local router Broadband connection that requires a user name and password The Configure E-mail and Internet Connection Wizard supports multiple Internet connections that use a broadband device or a modem

18 Firewall Settings To configure the firewall, you must meet one of the following criteria: Use a dial-up connection to the Internet Use a direct broadband connection that requires a user name and password (es: modem adsl) Use a broadband connection to the Internet (es: router) Use an existing firewall device on your network that supports Universal Plug and Play Use a dial-up connection to the Internet Use a direct broadband connection that requires a user name and password (es: modem adsl) Use a broadband connection to the Internet (es: router) Use an existing firewall device on your network that supports Universal Plug and Play

19 You can choose which Web site services that users can access, such as: Secure Web Site Settings Outlook Web Access Remote Web Workspace Performance and Usage reports Outlook Mobile Access SharePoint site Outlook Web Access Remote Web Workspace Performance and Usage reports Outlook Mobile Access SharePoint site

20 To send and receive Internet e-mail messages by using Exchange: E-mail Settings Choose the appropriate delivery method Choose the appropriate retrieval method Choose the signal type Enter the registered Internet domain name Determine whether to remove e-mail attachments from incoming e-mail

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40 Windows Small Business Server Remote Access Wizard This wizard provides on-screen instructions for configuring your server for: VPN connections Dial-up connections Both VPN and dial-up connections VPN connections Dial-up connections Both VPN and dial-up connections After clicking Finish, the wizard: Configures the server according to your selected settings Creates the Client Connection Manager configuration file Configures the remote access policy to allow members of the Mobile Users group to use remote access Configures the server according to your selected settings Creates the Client Connection Manager configuration file Configures the remote access policy to allow members of the Mobile Users group to use remote access

41

42

43

44

45

46

47 Riferimenti e risorse Risorse tecniche per Windows Small Business Server 2003 http://www.microsoft.com/italy/windowsserver2003/sbs/te chinfo/default.mspx http://www.microsoft.com/italy/windowsserver2003/sbs/te chinfo/default.mspx MOC Course 2395: Design, Deploy, and Manage a Network Solution for a Small and Medium Business http://www.microsoft.com/traincert/syllabi/2395AFinal.asp http://www.microsoft.com/traincert/syllabi/2395AFinal.asp Exam 70-282: Design, Deploy, and Manage a Network Solution for a Small- and Medium-Sized Business http://www.microsoft.com/learning/exams/70-282.asp http://www.microsoft.com/learning/exams/70-282.asp

Download ppt "Windows Small Business Server 2003 la sicurezza garantita e pre-configurata per i servizi Exchange, l'accesso remoto e l'amministrazione della rete Alessandro."

Similar presentations

VPN Client-to-Lan e Lan-to-Lan con Windows Small Business Server 2003 installazione, configurazione, sicurezza Alessandro Appiani Consultant Microsoft.

VPN Client-to-Lan e Lan-to-Lan con Windows Small Business Server 2003 installazione, configurazione, sicurezza Alessandro Appiani Consultant Microsoft.
Corso referenti S.I.R.A. – Modulo 2 Windows Client & Server Security 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano.

Corso referenti S.I.R.A. – Modulo 2 Windows Client & Server Security 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano.
Encrypting Wireless Data with VPN Techniques

Encrypting Wireless Data with VPN Techniques
Enabling Secure Internet Access with ISA Server

Enabling Secure Internet Access with ISA Server
Microsoft Internet Security and Acceleration (ISA) Server 2004 Technical Overview

Microsoft Internet Security and Acceleration (ISA) Server 2004 Technical Overview
© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 High-performance Gigabit Ethernet ports rapidly transfer large files supporting.

© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 High-performance Gigabit Ethernet ports rapidly transfer large files supporting.
Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)

Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)
Module 5: Configuring Access to Internal Resources.

Module 5: Configuring Access to Internal Resources.
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
Introduction to ISA 2004 Dana Epp Microsoft Security MVP.

Introduction to ISA 2004 Dana Epp Microsoft Security MVP.
Principles of Information Security, 2nd Edition1 Firewalls and VPNs.

Principles of Information Security, 2nd Edition1 Firewalls and VPNs.
Chapter 7 HARDENING SERVERS.

Chapter 7 HARDENING SERVERS.
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.

K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
MCDST 70-271: Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 14: Troubleshooting Remote Connections.

MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 14: Troubleshooting Remote Connections.
Remote Networking Architectures

Remote Networking Architectures
Network Address Translation, Remote Access and Virtual Private Networks BSAD 146 Dave Novak Sources: Network+ Guide to Networks, Dean 2013.

Network Address Translation, Remote Access and Virtual Private Networks BSAD 146 Dave Novak Sources: Network+ Guide to Networks, Dean 2013.
1 © J. Liebeherr, All rights reserved Virtual Private Networks.

1 © J. Liebeherr, All rights reserved Virtual Private Networks.
1 Enabling Secure Internet Access with ISA Server.

1 Enabling Secure Internet Access with ISA Server.

Similar presentations

Ads by Google