I work at a smaller startup and currently we have 2FA, IAS and disabled root credentials for our AWS environment. We also have IP restrictions so you can only connect through via office internet or VPN. Currently if our office went down we would not be able to access our AWS environment(without making emergency changes within AWS), so I was asked to implement a redundant VPN line.
I guess my question is how mandatory does /r/networking think having IP restrictions on accessing AWS resources? Is this a standard in the tech industry?
No comments:
Post a Comment