Hello,
I am the sole full time support IT for a small business (<50 Users) and I am looking into setting up a Proxy. We currently use Windows Server 2003/SP2 as the main server and a mixture of XP/7 and Server 2003 as our OS's for workstations and other servers. We are also behind a hardware firewall and have hosted POP3 mail accounts, both of these have been running smoothly and have provided no problems so far. How hard is it to intergrate Wingate with them?
I have downloaded an evaluation version to see if it has the features that are required and how it performs.
A number of users use Terminal Services to log onto the server from their desktop, and do all their work from there. As I understand the feature - Terminal services / multiple users per IP - has this covered.
Real-time activity monitoring
Traffic monitoring
are also features that would be used.
The filtering of web access to either only allow certain websites (Whitelist) or disallow certain websites (Blacklist) is also required. After reading another thread it has come to my attention that only version 7 allows use of MYSQL to create lists for filtering access rather than creating policy upon policy. However only version 6.6 is listed on your site, how do I purchase v7?
We are about to start rolling out Symantec Endpoint Protection Small Business Edition, any idea how well these this and Wingate work together?
I also have a few more questions however I will leave it at this for now until I find a bit more information.
Thanks.
A few general Qs.
Moderator: Qbik Staff
5 posts
• Page 1 of 1
Re: A few general Qs.
by adrien » Oct 15 10 5:48 pm
hi
Not sure what you mean by hosted POP3 mail accounts. Do you mean you connect out to POP3 accounts at an ISP, or you host a POP3 server which external users connect back into? WinGate supports both these scenarios, but by different means.
a) External POP3 accounts
connecting out to an external POP3 server is done either through NAT, SOCKS, WinGate Client or via the POP3 proxy. NAT is the most commonly used and simple to configure.
b) Publishing an internal POP3 server to the internet.
To do this, the easiest way is to edit the Extended Network settings, Choose the table "Connections from the internet", and set up an entry for TCP port 110, to redirect to your POP3 server. If your POP3 server uses WinGate as its default gateway you can also then check the option "don't translate source Ip", in which case your POP3 server will see the connections as coming from the external IPs, otherwise it will see the connections as coming from the internal adapter on the WinGate computer.
By adding the IP of the terminal server to the "multi user IPs" settings in WinGate, credentials won't be inherited by subsequent connections made from that IP, so individual users need to establish their own credentials (provided that your policy requires establishment of credentials at all).
What OS is the terminal server running on?
If you get a v6 license it will have a 1yr version protection policy included, which will give you v7. You can get a copy of v7 as well if you like (it will take the existing v6 key) just email support@qbik.com for a link.
Are you planning on installing the WinGate client? If, so there may be a conflict, but otherwise should be fine. I'm not sure if there's a conflict or not, but unless you are installing something on the same computer as the Symantec Endpoint Security software, I don't see how they would conflict. I believe updates are just done via HTTP, so there may be some whitelisting required to allow updates for that to go through without authing or scanning (if you also install Kaspersky AV for WinGate for instance).
Regards
Adrien
IT_Sam wrote:Hello,
I am the sole full time support IT for a small business (<50 Users) and I am looking into setting up a Proxy. We currently use Windows Server 2003/SP2 as the main server and a mixture of XP/7 and Server 2003 as our OS's for workstations and other servers. We are also behind a hardware firewall and have hosted POP3 mail accounts, both of these have been running smoothly and have provided no problems so far. How hard is it to intergrate Wingate with them?
Not sure what you mean by hosted POP3 mail accounts. Do you mean you connect out to POP3 accounts at an ISP, or you host a POP3 server which external users connect back into? WinGate supports both these scenarios, but by different means.
a) External POP3 accounts
connecting out to an external POP3 server is done either through NAT, SOCKS, WinGate Client or via the POP3 proxy. NAT is the most commonly used and simple to configure.
b) Publishing an internal POP3 server to the internet.
To do this, the easiest way is to edit the Extended Network settings, Choose the table "Connections from the internet", and set up an entry for TCP port 110, to redirect to your POP3 server. If your POP3 server uses WinGate as its default gateway you can also then check the option "don't translate source Ip", in which case your POP3 server will see the connections as coming from the external IPs, otherwise it will see the connections as coming from the internal adapter on the WinGate computer.
IT_Sam wrote:I have downloaded an evaluation version to see if it has the features that are required and how it performs.
A number of users use Terminal Services to log onto the server from their desktop, and do all their work from there. As I understand the feature - Terminal services / multiple users per IP - has this covered.
By adding the IP of the terminal server to the "multi user IPs" settings in WinGate, credentials won't be inherited by subsequent connections made from that IP, so individual users need to establish their own credentials (provided that your policy requires establishment of credentials at all).
What OS is the terminal server running on?
IT_Sam wrote:Real-time activity monitoring
Traffic monitoring
are also features that would be used.
The filtering of web access to either only allow certain websites (Whitelist) or disallow certain websites (Blacklist) is also required. After reading another thread it has come to my attention that only version 7 allows use of MYSQL to create lists for filtering access rather than creating policy upon policy. However only version 6.6 is listed on your site, how do I purchase v7?
If you get a v6 license it will have a 1yr version protection policy included, which will give you v7. You can get a copy of v7 as well if you like (it will take the existing v6 key) just email support@qbik.com for a link.
IT_Sam wrote:We are about to start rolling out Symantec Endpoint Protection Small Business Edition, any idea how well these this and Wingate work together?
Are you planning on installing the WinGate client? If, so there may be a conflict, but otherwise should be fine. I'm not sure if there's a conflict or not, but unless you are installing something on the same computer as the Symantec Endpoint Security software, I don't see how they would conflict. I believe updates are just done via HTTP, so there may be some whitelisting required to allow updates for that to go through without authing or scanning (if you also install Kaspersky AV for WinGate for instance).
IT_Sam wrote:I also have a few more questions however I will leave it at this for now until I find a bit more information.
Thanks.
Regards
Adrien
- adrien
- Qbik Staff
- Posts: 5448
- Joined: Sep 03 03 2:54 pm
- Location: Auckland
Re: A few general Qs.
by IT_Sam » Oct 18 10 4:14 pm
Hi Adrien,
POP3 accounts are hosted externally through another company - ie server101.
Terminal Server is running on Windows Server 2003.
If version 7 is available, why is it not lised on the website? Or if it is in Beta how likely would I be to encounter problems that as of yet have no know fix?
I do not plan on installing the wingate client.
POP3 accounts are hosted externally through another company - ie server101.
Terminal Server is running on Windows Server 2003.
If version 7 is available, why is it not lised on the website? Or if it is in Beta how likely would I be to encounter problems that as of yet have no know fix?
I do not plan on installing the wingate client.
- IT_Sam
- Posts: 3
- Joined: Oct 14 10 12:55 pm
Re: A few general Qs.
by adrien » Oct 18 10 5:11 pm
v7 isn't on the site, since it's not yet in public beta, but a number of customers are beta-testing it, and even running it in production environments (as are we).
We have been releasing a new build for V7 once or twice a week for the last 8 months or so. There's an update feature in WG7 that means you can get it to automatically check, download, apply updates and reboot as required for completely unattended updating.
So resolutions to issues with WG7 are actually a lot quicker than for previous versions.
For your use-case of POP3 via NAT, and web surfing, WG7 is well-tested and doesn't have any known issues. So if you were looking for a DB-based whitelist/blacklist then it's an option. In the end, you might like to test it first and make your own judgement call on it.
Regards
Adrien
We have been releasing a new build for V7 once or twice a week for the last 8 months or so. There's an update feature in WG7 that means you can get it to automatically check, download, apply updates and reboot as required for completely unattended updating.
So resolutions to issues with WG7 are actually a lot quicker than for previous versions.
For your use-case of POP3 via NAT, and web surfing, WG7 is well-tested and doesn't have any known issues. So if you were looking for a DB-based whitelist/blacklist then it's an option. In the end, you might like to test it first and make your own judgement call on it.
Regards
Adrien
- adrien
- Qbik Staff
- Posts: 5448
- Joined: Sep 03 03 2:54 pm
- Location: Auckland
Re: A few general Qs.
by IT_Sam » Oct 19 10 12:12 pm
Alright, sounds good to me. I will speak to a few others, cheers for the assistance.
- IT_Sam
- Posts: 3
- Joined: Oct 14 10 12:55 pm
5 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 5 guests