Converged networks unite myriad applications, protocols, devices and physical infrastructures. With wireless LANs, WANs and remote VPN connections opening multiple doors into the corporate network, the traditional network perimeter is disappearing. Without a concrete network boundary, how does the IT department protect against unauthorized access? The key is to institute safeguards at critical network junctures, such as where the WAN meets the LAN, where the wireless LAN meets the wired LAN, between server farms and in endpoint devices. This paper discusses how to implement this type of network to guard against network intrusions by internal employees and Internet users alike.