Jump to content

windows 2000 security


Recommended Posts

Presently we have a workgroup enviornment with 25 systems on win2k proff and win xp proff.A Linux firewall is setup for interent access with Iptables and nating.

Hence all theusers have internet access.Some policy changes are needed and I want do a setup with the following groups and the security features needed are as below.










1)No group should be able to access the resources of each other ,except the users in its respective group.


2)Internet access only for support and mktg.

3)Other groups to have mail access only ,but no internet access(How should i go about this ,was thinking of installing Mdaemon mail server)


4)Each group will probably have its own file server

5)A person from one group may have permission to access resources og other groups.

6)VPN access (client access) to connect to vpn server.

7)CAn igo in for a firewall based router which will have also have a VPn module at the internet gateway.


I had thought of 2 solutions ,one pertaining to creating a single windows 2000/2003 domain enviornment and second using Vlan.I m not sure which one will work,hence kindly go thru and let me know if any other method is avialble to achieve the following.



If i go in for a vlan enviornment ,and use a single Layer 3 switching device ,is it possible for me to access a particular group if required .

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.