Good afternoon,
I'm trying to help someone solve a solution but I'm not sure how to explain what I want, or even if it's possible.
I want a number of PCs on my network to be run without Windows Updates, so technically 'unsecure'. Is there a way to allow these machines access to the rest of the network/the internet by going though only one fully patched secured machine, which will monitor traffic from the unsecure PCs?
Is there a way to configure the unsecure machines to be be physically attached to the same network as the rest of the PCs, but be kept apart e.g. by subnet, or would they have to be physically isolated to ensure potential malicious traffic is kept separate?
The proposed fix is that all machines must be patched and fully up to date, which is a solution that doesn't work for me.
I'm really looking to see if my idea is possible (or the correct terminology) rather than how to do it.
Note this is a work related question, so don't answer if you think I should be paying for consultation!
I'm trying to help someone solve a solution but I'm not sure how to explain what I want, or even if it's possible.
I want a number of PCs on my network to be run without Windows Updates, so technically 'unsecure'. Is there a way to allow these machines access to the rest of the network/the internet by going though only one fully patched secured machine, which will monitor traffic from the unsecure PCs?
Is there a way to configure the unsecure machines to be be physically attached to the same network as the rest of the PCs, but be kept apart e.g. by subnet, or would they have to be physically isolated to ensure potential malicious traffic is kept separate?
The proposed fix is that all machines must be patched and fully up to date, which is a solution that doesn't work for me.
I'm really looking to see if my idea is possible (or the correct terminology) rather than how to do it.
Note this is a work related question, so don't answer if you think I should be paying for consultation!