topic Confidential Network in Network Security

Confidential Network

vineesh.viswanath — Sun, 10 Mar 2019 11:35:16 GMT

Is there a way that we could restrict a desktop machine accessing any other system in the network ?

if so will we be able to implement an encrypted communication between the end machines .

Re: Confidential Network

rhermes — Mon, 06 Apr 2009 18:15:00 GMT

An IPS is not the device you want for this job.

For access restriction you should look at using VLANs, for encrypted communications you should set up a tunnel between the desktop VLAN and the destination VLAN

Re: Confidential Network

clausonna — Tue, 07 Apr 2009 18:01:24 GMT

Rhermes is correct; IPS is not the right solution. You want VLANs and ACLs, potentially NAC but that's overkill.

There are 3rd party products out that extend this as well, so if (for example) you permit a user to Remote Desktop or VNC from Desktop A to Server B, they're 'locked' into Server B and can't RDP out anywhere from there. I think one solution was called Xceedium.