Question

You are an IT manager for a small business. You are being asked to create a network security plan both for internal IT workers and for the company in general. You are to put together a network security plan that addresses each of the following components

: Explain the use of virtual private networks (VPNs) and their security benefits and drawbacks.

Create a standard procedure for adding new users to a network.

Create a summary of a network plan, including the use of a firewall, written for a business person with limited knowledge of IT. Document the uses of an intrusion detection system.

Identify and explain whether workers should be required to report potential security violations and create a policy based on your viewpoints.

Determine the best e-mail policy for an organization and document it for a business owner. Create a password-change policy for a networking group. Provide an executive summary briefing for a non-IT manager to review the business implications for the IT policies that you are recommending

Answer 1

Virtual Private network :This is a special type of network in which many of the offices which are located in different places or different cities or even different countries connected privately over public network(internet).Using VPN, information can be send and receive over internet in a secure manner means you will you use internet for your private work that is blind for others.

Benefits:

1.It provide privacy over public network(Internet).

2.It can not be hack by any hacker because data is flow using end to end encryption technique.

3.You can block ads and other unwanted contents.

Drawback:While design the vpn we need to build clear security setting due to cyber crime.

ADD NEW USER

1.You need username and password to connect with vpn

2.Create a pool of local addresses to be used for assigning dynamic IP addresses to remote VPN clients. You can use 10.10.20.240 to 10.10.20.249

3.Leave empty for pushed to the client.

4.leave default for encryption algorithm 3Des

5.Default to ipsec and finish the process

More Security you can add to your network by using firewall,firewall may be a hardware device or software that can help to manage your security risk over virtual private network.

As the early process we created username and password to entry in our vpn network if we make one more filtering using the firewall it would additional protection to our system and with the help of firewall we can track the user and do monitoring also of the particular user.

Policy:

1.We can create security policy for users just like adding special characters in password,moderate length of password.

2.Block the user if any user try to access the account with wrong password after 3 wrong attempts.

3.Make renew policy of password after number of days it must renew.