Saturday, February 14, 2009

Bookmark and Share

Content Filtering and its Importance to Small Business

Most small businesses do not filter Internet content, what's the point? First, lets look at content types and then discuss the issues with not controlling what your business allows in and out of the Internet.

Content Types
  • HTTP(s) Web Traffic - Normal Web Pages
  • Instant Messaging (IM) - MSN/AOL/Yahoo Messaging, File Transfer and Voice
  • File Transfer Protocol (FTP) - Common method for transferring files
  • Streaming Media - Used to stream video and/or music

Content Concerns

Network Bandwidth can be an expensive commodity for small businesses, depending on your region or location. Non-business web surfing, instant messaging and streaming media can consume all of your Internet bandwidth, leaving your production application or web site with poor performance.

Legal Risk isn't on the forefront of a small business owner's mind when allowing employees access to the Internet. Employees use company computers to download copyrighted materials such as music and dvd's. The RIAA has fined Millions of Dollars (Yes Millions) to businesses that have copyrighted materials on their computers and file systems, all downloaded by employees.

Human Resources is concerned about offensive or harassing material being displayed on company computer systems. The Internet allows access to any and all types of sexually explicit content. Sexual harassment claims can be costly for a small business and are avoidable.

Data Theft by disgruntled employees can leave a company without it's most valuable resource, customers. Customers are more likely to switch services when they find out their personal data has been lost or stolen. IM and FTP make it extremely simple to copy customer data to a remote location. USB drives also pose the same risk.

The Solution

Proxy Servers are the most flexible and best suited to handle all four concerns above. They sit between the computer and the Internet, handling all Internet traffic. They act as the traffic cop in the middle of a busy intersection when the stop light is out. They determine when and where what types of content can leave the network. Depending on the proxy server, they can cache web pages, which saves network bandwidth, limit streaming music bandwidth, filter categories of URL (pornography, mature content, etc...) and control instant messaging traffic.

Personal Computer Web Control Software can be installed on individual pc's to control web site access, instant message and time of day access but is not scalable for a large number of PC's.
Conclusion
Each business needs to add a content filtering and acceptable Internet use policy to the security policy or employee handbook. Production application performance, legal / human resource risk and data theft are concerns for all business. Content filtering is not a significant investment compared to legal fees dealing with RIAA, sexual harassment or lost customer data.

Aaron Magruder
(816) 566-0017
Kansas City Cisco Select Partner
Network, Security and Unified Communications Solutions

Labels: ,

Sunday, February 1, 2009

Bookmark and Share

Network Management for Small and Medium Business

Network and Systems Management is an important process for any business, regardless of it size. The ability to know when, where or even how a process failed can save time or lost resources which equates to money.

Definition

Network Management is a broad term that includes many components. FCAPS (Fault, Configuration, Accounting, Performance, Security) is the most common term that describes each component.

  1. Fault Management - The ability to determine when a device, circuit, or system failed.
  2. Configuration Management - Track when, from where and by whom a system configuration change occurred including software, hardware and configuration.
  3. Accounting Management - Track network and system resources for billing back to a business unit or customer.
  4. Performance Management - Report system or circuit utilization in real-time and historical.
  5. Security Management - Report and track who is accessing resources and alert on unauthorized use.

The Why

As a small or medium business with only a few computers, a server and a Internet router, why would I need Network Management.

  1. Fault Management Example - Knowing when your systems failed an why is half the technology battle for small business. The last thing you need in a competitive market place is your primary application to be down while your competitor is operational. Get alerts after hours so you can prepare to have your IT Company there in the morning.
  2. Configuration Management Example - Your administrator makes a change to a system and it causes an outage. What if they can't remember what they did and are unable to fix it. If you have configuration management software your can revert back to your old configuration or view the changes that were made.
  3. Accounting Management - This is probably the least used in SMB Network Management. Network and System resources are expensive and Managed services providers need to determine who to bill back cost appropriately. Internet providers and cell phone providers use accounting to determine how long you have used the Internet or the amount of minutes you talked.
  4. Performance Management Example - This is closely tied to Fault Management. PM monitors system and circuit utilization in real-time and historically to identify issues before they occur. Systems have memory leaks which can be alerted on at specific intervals. Circuits can become congested during peak times of the day or because of run away processes. These can also be identified historically and alerted on before you experience significant impact.
  5. Security Management Example - Determining the times and dates people login to your remote access solution, denied firewall traffic and IDS logs can all assist in tracking down and resolving security breaches, assist in cases that may go to court and overall troubleshooting.

What do I use?

There are hundreds of network and system management solutions. Below are 4 that are well suited for SMB's, 3 of the 4 I have used in the past. They are low cost, easy to implement.

  1. Cisco Monitor Manager and Director - If you are a Cisco SMB customer, this is the way to go. Monitors all aspects of the UC500 from the IP Phone, Phone Line utilization (so you can plan for additional lines), system utilization, etc. Alerts can be sent to a Cisco Partner who can diagnose the issue.
  2. SpiceWorks - Free tool that monitors network, servers, pc's and has a Help Desk Portal
  3. AdventNet - Cost effective management solutions that encompasses a wide range of products that integrate into each other.
  4. SolarWinds Orion - Cost effective network, system and configuration management solution for Medium to Enterprise customers.

Who is managing the alerts?

There are many outsourced network management companies that will take action on alerts but it is usually a set type of alerts, response times, etc. It can be very limiting. If you are a Cisco SMB customer, a Cisco Partner can assist with managing the alerts from Cisco Monitor Manager.

Aaron Magruder
(816) 566-0017
NonStop Networks, LLC