Presentation is loading. Please wait.

Presentation is loading. Please wait.

Windows Small Business Server 2003 la sicurezza garantita e pre-configurata per i servizi Exchange, l'accesso remoto e l'amministrazione della rete Alessandro.

Similar presentations


Presentation on theme: "Windows Small Business Server 2003 la sicurezza garantita e pre-configurata per i servizi Exchange, l'accesso remoto e l'amministrazione della rete Alessandro."— Presentation transcript:

1 Windows Small Business Server 2003 la sicurezza garantita e pre-configurata per i servizi Exchange, l'accesso remoto e l'amministrazione della rete Alessandro Appiani Microsoft Certified Partner

2 Agenda Componenti tecnologici per la sicurezza Sicurezza perimetrale Sicurezza nelle comunicazioni di rete Sicurezza interna Policy, Auditing & Control Le aree pre-configurate in Windows Small Business Server 2003 Network design & Architecture Infrastruttura Exchange Remote Access Active Directory Tools Live Demo...

3 Componenti tecnologici per la sicurezza Perimetrale Firewalling protection Comunicazioni Encryption Secure Socket Layer Virtual Private Network Remote Access Rete interna Active Directory / Security Realm Policy (User, Computer,...) Auditing Content inspection (Antivirus)

4 Sicurezza perimetrale

5 Firewall Uno o più componenti/dispositivi che controllano laccesso da una rete protetta verso/da Internet e/o altre reti * * Zwicky, Cooper, Chapman – Building Internet Firewalls – OReilly 1995/2000

6 Filters and Network Access Streaming Media SMTP DNS Intrusion Firewall Access Policy Allow HTTP All Destinations Internal/Protected Network External/Unsecured Network Rules Applied Streaming Media SMTP

7 Firewall in Small Business Server A Controlled Point of Access for All Traffic that Enters the Internal Network A Controlled Point of Access for All Traffic that Leaves the Internal Network Inside/Outside Windows Server 2003 ISA Server

8 Sicurezza nelle comunicazioni

9 Quali problemi abbiamo con una comunicazione di rete che usa connettività pubblica come Internet? Network Monitoring Data Modification Identity Spoofing Man-in- the-Middle Password- based Password- based

10 Encrypts Data at the Application Layer SSL TLS Encrypts Data at the Network Layer Tunneling Protocol IPSec La soluzione: la cifratura dei dati trasmessi Encrypted IP Packet

11 Cifratura del traffico Application-Layer Network-Layer: Virtual Private Network (VPN) ApplicationApplication SSL/TLSSSL/TLS TCP/UDPTCP/UDP IP/IPSec Link Layer Physical Layer Application SSL/TLS

12 Sicurezza interna e controllo Active Directory!

13 Windows Small Business Server 2003 Componenti di sicurezza setup & configuration

14 Scenario di connessione router Interne t Router (ISP) SBS rete pubblica (es: /29) rete privata /24.2 xDSL Fibra ottica ISDN... rete pubblica (con NAT) (es: /24) azienda.local

15 To Do List

16 The Configure and Internet Connection Wizard This wizard provides on-screen instructions to configure the following server settings: Networking Firewall Secure Web publishing Networking Firewall Secure Web publishing

17 Network Connections Broadband connection types include: Direct broadband connection Local router Broadband connection that requires a user name and password Direct broadband connection Local router Broadband connection that requires a user name and password The Configure and Internet Connection Wizard supports multiple Internet connections that use a broadband device or a modem

18 Firewall Settings To configure the firewall, you must meet one of the following criteria: Use a dial-up connection to the Internet Use a direct broadband connection that requires a user name and password (es: modem adsl) Use a broadband connection to the Internet (es: router) Use an existing firewall device on your network that supports Universal Plug and Play Use a dial-up connection to the Internet Use a direct broadband connection that requires a user name and password (es: modem adsl) Use a broadband connection to the Internet (es: router) Use an existing firewall device on your network that supports Universal Plug and Play

19 You can choose which Web site services that users can access, such as: Secure Web Site Settings Outlook Web Access Remote Web Workspace Performance and Usage reports Outlook Mobile Access SharePoint site Outlook Web Access Remote Web Workspace Performance and Usage reports Outlook Mobile Access SharePoint site

20 To send and receive Internet messages by using Exchange: Settings Choose the appropriate delivery method Choose the appropriate retrieval method Choose the signal type Enter the registered Internet domain name Determine whether to remove attachments from incoming

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40 Windows Small Business Server Remote Access Wizard This wizard provides on-screen instructions for configuring your server for: VPN connections Dial-up connections Both VPN and dial-up connections VPN connections Dial-up connections Both VPN and dial-up connections After clicking Finish, the wizard: Configures the server according to your selected settings Creates the Client Connection Manager configuration file Configures the remote access policy to allow members of the Mobile Users group to use remote access Configures the server according to your selected settings Creates the Client Connection Manager configuration file Configures the remote access policy to allow members of the Mobile Users group to use remote access

41

42

43

44

45

46

47 Riferimenti e risorse Risorse tecniche per Windows Small Business Server chinfo/default.mspx chinfo/default.mspx MOC Course 2395: Design, Deploy, and Manage a Network Solution for a Small and Medium Business Exam : Design, Deploy, and Manage a Network Solution for a Small- and Medium-Sized Business


Download ppt "Windows Small Business Server 2003 la sicurezza garantita e pre-configurata per i servizi Exchange, l'accesso remoto e l'amministrazione della rete Alessandro."

Similar presentations


Ads by Google