|
News Letter 2009
Mac and PC Support and Repair
Security
Threats from worm viruses, hacking tools, and spyware/adware eliminated through router firewall, personal
firewall, anti-virus, anti-spyware, computer logon, wireless encryption, tape backup and more.
Data Backup and Recovery
All files on C: drive are backed up on an automated schedule.
Data is recovered from failed PC or server.
Spam Management
Junk E-mail blocked before it reaches your office network.
Networking
Category 5 cabling, Wireless, DSL, Cable and T-1.
New or Repaired Computers
Enjoy a revitalized computing environment.
Servers
Servers provide centralized storage and management of
information. Have enhanced security, access and performance.
Mobile Computing
Access office computers wherever there is a connection to the
Internet or phone line!
Access E-mail from a wireless such as Blackberry handhelds.
Private Instruction
Learn how to use Windows XP, Outlook, Quicken, and more.
Schedule 5 or 10 sessions at 1 to 2 hours each at your location.
| |
Before investing in a system for working remotely from your
office---consider the options or face poor performance, less security and
higher costs.
Some methods provide reduced security, poor performance and
higher costs over others: Virtual Private Network (VPN), Windows Remote
Desktop, PcAnywhere, GoToMyPC.com, and Citrix.
These are the most common ways to work remotely from the
office where each have advantages and disadvantages.
See VPN
Discussion Bellow---> Myth and Reality:VPN, PC and Mac |
Method
|
Advantages
|
Disadvantages
|
Cisco VPN Client
|
|
|
Recommendations: Do not use with Windows SBS
2003. Use with either OS X, Unix, or any Windows Server other than SBS
Server. Avoid opening files over network connection and instead
use remote desktop control. Try to use remote computer as "Thin Layer"
terminal only. If you open a file over any VPN connection and that
connection is lost, your data may become corrupted and unrecoverable---avoid
opening files over any VPN as it is unstable, insecure and performance is in
most instances terrible. |
Number of remote connections well controlled from a hardware appliance
running firmware. Runs independently of a server or group of servers and
has no mechanical moving parts to fail. |
Additional hardware and equipment. Higher installation and maintenance
costs over other VPN methods. Will result in IP addressing conflicts
with Windows Small Business Server (SBS) 2003 R2 networking. Conflicts
are only partially resolvable....IT managers, good luck in attempting this
work around as it is discouraged by Microsoft which recommends the Windows
Server VPN always as that is what they sell. Requires installation of
Cisco client software of which is not entirely compatible with Windows Vista
and likely never will be (see VPN discussion below). |
Windows XP or Vista VPN Client/Windows Server VPN
Recommendations: Configure logon restrictions with respect
to time of use and password expiration. |
Is built into Windows Server 2003 R2 and Windows Small Business Server (SBS)
2003 R2.
Reduced cost over Cisco as less equipment and less IT management is
presented.
Seamless IP addressing running with SBS 2003 R2.
|
Number of remote connections will be limited depending on number of client
licenses as legally purchased from Microsoft.
|
OS X VPN Client/OS X Server VPN
Recommendations: Use the Windows Remote Desktop over VPN to manage
Outlook at remote PC. |
Provides one of these most secure connections to any VPN server.
Security threats are minimal. Extremely stable platform compared to
Microsoft Windows. |
Requires availability of Mac. The cost to computing
performance ratio of a Mac to a PC is higher.
Requires the installation of client to allow Remote
Desktop control of Windows PC.
Requires political decisions in an organization to choose
the use of Macs over long time use of a PC.
|
Windows Remote Desktop over TCP 3389
Recommendations: Use with a Mac running OS X. Avoid opening
file out of remote network and instead run application at remote desktop. |
Relatively Secure. Only a single TCP port is used of which typically only
pass keystrokes and mouse clicks to screen. Low to no cost for
software and easy to use. Provides extremely stable and secure control of
applications and data. Use at Mac or PC.
|
File transfer operations and/or other network operations can be troublesome
in comparison to VPN methods. |
PcAnywhere over TCP and UDP ports
Recommendations: Use as backup plan for remote desktop control if
Windows Remote Desktop is down. |
Relatively Secure. Only two ports are used of which only pass
keystrokes. Allows solid control of PC in particular with respect to
restarting and logging on. |
Requires purchase of software at each client to connect and at each host.
Screen refresh is sluggish compared to Windows remote desktop. |
|
Recommendations: Use this if you wish for a reliable/secure method
and---user friendly method to work remotely from one PC to another. |
Easy to use and excellent screen refresh. Provided by Citrix. Can be
used from any PC, is secure, and provides stable method to work with
data.
|
Security model is somewhat flawed in that the provider has knowledge of
logon information. Requires monthly fee near $20. May not run at a Mac. |
Citrix Server
Recommendations: Most suitable for larger organizations with
larger IT budget having more than 100 users and a need to deliver
Windows/Web applications in efficient manner. |
The "Rolls Royce" of telecommuting.
The most secure as connectivity is highly proprietary, encrypted
keystrokes and screen refresh only.
Is likely used by the military.
Excellent performance with respect to screen refresh when delivering
remote desktop control.
Server software relatively easy to configure for the average IT manager. |
The most costly way to telecommute. Software purchase alone can run
between $6,000 and $20,000. |
|
|
|
|
Myth
|
Reality
|
MYTH: A VPN connection provides the greatest security and
performance when working between the home and office.
|
A VPN connection provides one of the most insecure remote connections in
particular if executed from a Windows PC at a home.
The VPN tunnel itself over a network is secure where it is at the
openings of that tunnel where problems occur.
The insecurity arises as the home network is linked directly to a
downtown office.
The home network is provided an opening to the VPN through
either Cisco VPN Client, Windows VPN Client or OS X VPN Client.
As the typical home network is in many cases insecure, the VPN
connection is then open to this with respect to passing viruses or hackers.
This is in particular with an unsecured wireless home network and if the
home network is shared with unsecured laptops.
Even worse, if an office worker attempts a VPN connection from a public
PC, any security threat at that PC can be introduced to the office network.
Steps can be taken at the host to filter out other traffic, yet this
approach is like patching holes in a leaking boat---miss a hole, and the
boat sinks as would be missing an unauthorized ported application. If
when the firewall is configured with filters, authorized applications
themselves have security holes and many thousands of fruitless security
patches from Microsoft almost never up to date at a home PC.
When using a VPN, careful considerations need to be made.
If a home network, only connect using an isolated "subnet" of the home
network.
This means using a second router of which only secured computers are
allow to connect with.
Doing this, substantially improves security when using a VPN---and
should be an absolute requirement for clinical or law offices or where tight
security is imperative. An IT manager should ensure a closed IP
network for the remote PC at the home of an employee or associate who VPNs
into a locked down office.
The data transferred rate and/or bandwidth over most VPN connections from
home over current broadband is sluggish. This is noticed with either a
Microsoft Server VPN or a Cisco Client VPN as there is a bandwidth cost for
implementing a VPN at an Internet gateway belonging to an office IP network.
A VPN works, can be secure, yet in many cases will be found operating in
a unsecure and "clunky" manner while working from home or elsewhere.
If a VPN, try to use a Mac, run from a closed IP network and use Windows
Remote Desktop Client. Using a PC with an unprotected/open remote
network provides gaping holes for viruses and hacking tools.
Highly unstable in particular with opening files such as Word, Excel,
Outlook, etc. over the connection. If the VPN connection is lost, your
data can become corrupted and unrecoverable. If using a VPN, avoid
opening files across it and instead use Windows Remote Desktop or PcAnywhere.
If the VPN is disrupted when using PcAnywhere or Remote Desktop, there is no
chance of data corruption.--better yet do not use a VPN at all and use
either direct Windows Remote Access across TCP 3389, direct PcAnywhere
Access across assigned TCP/UDP or simply use
www.GoToMyPC.com . |
|
|
|
|
MYTH: A PC is more secure than a Mac and a PC is
absolutely required when working away from the office. A Mac will not
work with remote access to allow use of a Windows computer and Outlook.
|
A Mac is substantially more secure than a PC as the OS X operating system is
not a target for computer viruses as is a PC. A Mac running OS X can
establish remote desktop control of a Windows XP Pro or Vista Business PC
over a VPN as provided by either a Cisco Pix firewall router or Windows
Server 2003. In doing so, complete access to Outlook is provided. |
|
