Multinational. 40,000 physical clients.
I would like to take the pulse of the community as to whether you have heard of anyone doing this, whether you think it's a good or bad idea.
It's certainly creating a number of significant logistical nightmares preventing clients accessing anything locally and all traffic going to one of only 4 sites globally.
Very limited options for split tunneling - apparently the vendor requires IP addresses and cannot use DNS for that (wtf??) and the list is severely limited.
Current picture is that all Windows/O365 patch traffic will choking the VPN links. Client will not be able to use local content servers for any app installs.
But the flip side.....what exactly is the benefit on prem to warrant VPN for ALL traffic for a device in an office?
To me this plan is like a shopkeeper making all his customers climb through a cramped long tunnel to get in and out of the shop to save paying for security staff... Am I missing something??....
No comments:
Post a Comment