Sign in with
Sign up | Sign in
Your question
Solved

How to protect my server

Tags:
  • Windows Server 2008
  • Security
  • Business Computing
  • Servers
Last response: in Business Computing
Share
May 22, 2014 6:31:52 AM

Hi guys,

I work for a small business where my primary roll is not IT, I'm just the guy that knows way more then the average user, mostly building custom computers, and more personal computing, very little business, or enterprise knowledge.

We don't really have the money for an IT department, so they have come to me to see what I can do.

At this point our office uses USB drives to move files between computers and we have between 5-10 users. This works, until someone needs information on the road and they are not file sizes that could be emailed. We are a Windows based network, that will be using a Windows server.

We are looking at purchasing a static IP and installing a server. This server will be used as a file server, and application server for our guys in the field. I understand how to set up the server, but I am unsure on how to protect it. Having a static IP is going to leave it open for constant attacks, thus putting our network at risk. But it can't be locked down because it needs to be accessed remotely by our guys on the road, who are not the most tech savvy bunch.

If anyone can shed some light or point me in the right direction I would really appreciate it. Like everything I'm sure there is more than one solution to my situation, so the more options I have to work with the better.

Thanks!

More about : protect server

Best solution

May 22, 2014 8:53:21 AM

My first suggestion would be to find a local IT services company to help you out. There are so many options for what you want that it would help you to have a "seasoned" hand to guide you. I would contact local companies of your size to see who they have used, how reasonable they were, & if they feel comfortable with them.

Second, in terms of solutions, you can get by with running Dropbox & simply sharing a folder, whether that is on a dedicated file server, a NAS, or on a shared-folder that all PCs can access through workgroup ("peer-to-peer ") networking. Dropbox will make it simple for your remote road warriors as it is VERY simple to use & understand. Some NAS (like WD's "My Cloud") also have simple sharing apps that might work.

The Dropbox/NAS solution might be a lower-cost one to begin with, and it won't require much capital investment. If you go the server route, I might recommend you get that IT services company to assist. You're the type of SMB that a smaller IT services company can partner with to mutually help each other.

Finally, you still need to address backups. If you use Dropbox, that can help because a copy of your data is stored on their cloud. Other solutions might require a different type of backup.
Share
May 22, 2014 9:36:36 AM

Check brand-name OEMs (Dell, HP, IBM) for servers with bundled Windows Server Essentials. It provides for easy sharing between users, both local and remote, and does not need additional configuration to work behind a router. Get two additional external disks for backup so you can rotate them. You could spend less than $3000 on that (not counting your time to set it up and configure).
m
0
l
Related resources
May 22, 2014 1:05:15 PM

One of the programs that we want to run requires access to the service running on the HQ server. When you boil it down, it allows access to an encrypted database. The client software requires the server side communication for the guys on the road. That's why were looking into doing the server.

The application is a specialty program to allow access to multiple secure databases, and it can be accessed over LAN and WAN, I just need to know since I am going to put this with access to the internet, what precautions I should take.

We tried using Dropbox with the previous program we used, and we ended up having synchronization issues, because it was using a "copy" (for lack of a better word) of the database, not the active database file.

We contacted a few IT service companies, and the rates in Toronto are quite a lot. Can anyone suggest a good company that doesn't have outrageous rates?
m
0
l
May 22, 2014 2:25:35 PM

ITbeginner360 said:
One of the programs that we want to run requires access to the service running on the HQ server. When you boil it down, it allows access to an encrypted database. The client software requires the server side communication for the guys on the road. That's why were looking into doing the server.

The application is a specialty program to allow access to multiple secure databases, and it can be accessed over LAN and WAN, I just need to know since I am going to put this with access to the internet, what precautions I should take.

We tried using Dropbox with the previous program we used, and we ended up having synchronization issues, because it was using a "copy" (for lack of a better word) of the database, not the active database file.

We contacted a few IT service companies, and the rates in Toronto are quite a lot. Can anyone suggest a good company that doesn't have outrageous rates?


OK, that clarifies a bit. I only recommend Dropbox for sharing standalone files, like Words docs or pics. I agree, don't try to use it for files/databases being actively used.

So, to secure access to your application, you can do the following:

You can get a static IP for your firewall, and then you use a VPN client (standalone or SSL VPN). If the application is web-based, then that makes your life even easier. VPNs are pretty secure, so don't be afraid that your firewall is always connected. It also helps that your database isn't exposed to the Internet; it will now be only accessible to someone with a VPN connection.

Edit: On the cost side of IT services company - a smaller IT services company might be cheaper. However, you can always view the cost as both an investment (hopefully creating a well-designed infrastructure) and one that might require less as soon as the initial setup is done. Also, if they want your business, make them come up with the proposal either w/o charge (no "initial consultation fees" either), or for an agreed-upon fee for an set amount of time (i.e., you don't them extra if they took more time than agreed upon to give you a proposal).
m
0
l
May 29, 2014 5:40:56 AM

avoid your server from virus affect
m
0
l
!