Do you allow remote access to your internal servers over the internet without using VPN tunnels to connect to your network first? Internal like intranet server that doesn't otherwise have anything allowed from the internet
We've had a habit of not opening those without doing an IPSEC or SSL VPN to our network and then connecting to the box. Though I started to think what's the point of doing that. If the company managing our intranet has a static IP, and they connect via SSH or something else that's secure, what's the point of forcing them to do a VPN first?
Any thoughts?
Thanks!
No comments:
Post a Comment