Hi,

I want to implement Split Tunneling for VPN Users in my Enterprise. While I do that I do want to have a restricted policy for the VPN users when they are off network and connected remotely. At the same time I do want to have the same policy applied to the users when they are on the network directly from office location.

Please suggest me the best practices. If anybody has implemented in any of their companies. Please help.

Thanks,

Sushanta

Recently, major vulnerabilities in Microsoft remote desktop protocol (RDP) is identified and patch by Microsoft is released. These vulnerabilities are categorized as 'critical' by all security forums. All organizations, whether small, medium or large are sensitized and working on patch deployment and/or workaround for fixing the same.

Patch deployment (especially in desktops) is a substantial activity. This may take days or even weeks or more to get completed.

So, the question arises that- what to do to immediately re-mediate the threat while keeping the business as usual? Answer lies in the fact that how to identify the users using RDP and patching those users' machine on priority. And rest all machines can be taken care of in due course.

There could be many workaround. One of them could be using SEP host based firewall. Using SEP host based firewall policy, incoming RDP connection can be blocked. This policy can be applied to all clients in almost...

What actually happens in a war? We tend to destroy airports, bridges, refineries, power plants, nuclear plants etc. These are basics for the economy of any country. How much do we spend in war? billions of dollars!

Stuxnet- a Malware, exploited many vulnerabilities of SCADA system, and destroyed Iran's nuclear power plant. It sent Iran's nuclear power plant 6-7 years behind. All this was done without any socio-economic disturbance. No war fought. No loss of lives. SCADA systems are used in nuclear power plants, refineries and other industries where PLCs (programmable Logic Controllers) are used. Manufacturer of this kind of system are Siemens, Honeywell, ABB etc.

Such a huge impact of Stuxnet is not a matter of chance. Stuxnet must be made carefully for this purpose. Huge investment might have gone in Stuxnet too.

Looking at the impact and cost of Stuxnet, it would be it's insult if we call Stuxnet a Malware- It's actually the first CYBER WEAPON...

Issue:

Installing NTP on the cluster blocks the communication between Windows Server 2008 Failover cluster nodes
Following the article TECH91154 doesn't resolve the issue.

Cause:

By default, the "Microsoft Failover Cluster Virtual Adapter" (NetFT.sys) uses IPv6 to communicate with other nodes in the cluster. If you have an IPv4 configuration, then IPv6 is tunneled over IPv4 to establish sessions with remote nodes. If IPv6 is completely unavailable in your environment, the nodes will then communicate by IPv4. It is possible to disable IPv6 and still have the cluster function correctly but it is recommended to enable IPv6 with Windows 2008, 2008 R2 Failover clustering.

Reference: For more information about IPv6 on cluster please refer to the below article from "Windows Failover Cluster Team":
...