Network + Guide to Networks Sixth Edition: Case Project 11-1: As an experienced

Question

Network + Guide to Networks Sixth Edition: Case Project 11-1:

As an experienced networking professional, you are asked to conduct a posture assessment on a local credit union’s network. The credit
union currently has two locations, a headquarters office downtown and a branch office on the east side of town. The headquarters has the
following equipment:
Ten Windows XP and ten Windows 7 workstations, connected to a Windows Server 2008 R2 file server
One Windows Server 2008 R2 RRAS server accessed by home workers after hours
One Windows Server 2008 R2 print server
One Linux database server
One Apache Web server for members to check their account balances online
One firewall where the network connects to the credit union’s ISP via a T3 dedicated link

The east-­side office has five Windows 7 workstations, connected to the headquarters office Windows Server 2008 R2 server through a T1
link.
At the headquarters, the servers reside in a locked room that admits authorized users with an electronic badge access system. Both locations have numerous security cameras, including cameras in the computer room. The manager also tells you that the credit union has a security policy that all employees are required to read and sign when they become employees. He believes that the network is very secure and asks you if he could do anything else to ensure that the network is safe from security breaches. In response, create a checklist
of items on this network that should be evaluated for security. Sketch a network diagram for the credit union (remember to include connectivity devices necessary for the LAN and WAN connections). Describe any entry points (physical or data transmission related) or situations that constitute potential security risks. In addition, explain how the credit union manager could better train his employees to
understand network security.

Explanation / Answer

As all the locations are covered by cameras that will protect entry of unauthorised workers entry into that room but it wont protect data.

Security breach can be done by homeworkers where they have an access server after hours. Where that can be controlled by limiting accessing the data of mainserver.

As it has the web apache server online which gives the access from outside of the office. Security breach can be cone from outside of the office.

Credit managers has to take care of the security by observing log file that should maintain each and every login and their actions performed (online/offline) as each and every employ has to be given seperate username and password. Database should be encrypted format .

Related Questions

Navigate

• Browse (All)
• Browse N
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.