Windows Admin Lessons have started
I’ve started lessons on how to be a good windows admin. I’ll start with traffic management. This is probably THE most important thing in being a windows admin besides patch management. Even if your machine isn’t patched, if you have tight traffic rules the bad stuff won’t bite. My example is a file server. A file server in your organization should be able to talk to client machines on 4 ports only. The only other traffic it needs is to DNS and maybe an AD, monitoring or WSUS.
Think about it. If you only allow your computer to talk to 20-1000 computers instead of the billion on the Internet, how likely are you to have a security issue? This is all done with IPsec. Look over to the right for lesson 1.