Our remote sites are setup with at least 2 dedicated incoming circuits.. 1 from our main DC and the other from our DR DC in case we have any issues with the circuits. We have a P2P setup coming off our Wan Box to each sites Router; for security, and all access layer behind that. We poll and monitor these devices just like the rest of our network and all data comes back to one of our on site DC's. We like agent based due to the instant nature of a Trap; use a combination just like all other areas. With the remote sites we prefer to know as soon as it happens, rather than on our next poll. Granted this is only a minute or so quicker, but when talking Patient Care it makes all the difference. Sounds like our setup is similar to wbrown 's. Most of our Site to Site VPN tunnels are setup for 3rd party or vendor support of some of our Med Devices. And those are specific to the devices they need so there is no parousing our network... if someone internal tries it I have alerts setup to tell me about it so that I can then inform information security; as they don't always have the strongest eye for some internal users.
↧
