We have a some web servers in DMZ behind PA firewalls. Website installed on them are publicly accessible from Internet via HTTPS.
Developers need to remotely access the server from internal network for configuration and support.
I can just open port 3389 on the firewall from internal to DMZ. But as a security guy, I am just scratching my head, if this solution is real secure and no harm doing this. I'm really hoping there is an better alternative.
No comments:
Post a Comment