×
INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!
  • Students Click Here

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

Jobs

Epo 4.5 Server externally facing?

Epo 4.5 Server externally facing?

Epo 4.5 Server externally facing?

(OP)
Hi Guys,

I'm fairly new to Epo -  the previous administrator of the company has set the Epo server externally facing (what I mean by this is that the IP address is not behind the firewall or in the DMZ i.e. off site I can access the console http://serverIP:8443). I think this was setup like this because of the complication with multiple firewalls/subnets across the site- and allowing laptops to connect off site.  My question is that although everything is running well, and ideally from a security perspective it would be best to set up epo server in the dmz and perhaps use agent handlers.  Is the current setup still ok? I think I read in some Mcafee guides a while back that epo server can sit anywhere in an organisations network?.. or is this a big NO NO! There's not much info. in the install guide or web in terms of where the server can "sit" in the organisation!
Epo 4.5
1500 Clients
VSE 8.7

RE: Epo 4.5 Server externally facing?

We are running the same client/server software and versions but keep epo's console internal.  Every year we update the client (unless some major upgrade comes out where we'd ask our external users to come in to get manually updated) on our image and send them out.

We have a main repository per building and many fallback ones in case one is down.  As far as our permanent outside users, the last two fallbacks download updates directly from McAfee (also set as the last two on all internal ones to, not that it would ever happen).

How many outside users do you have, how often do you reimage?

If there isn't a real big need, then I'd disable outside access in external DNS.

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close