Answer the question
In order to leave comments, you need to log in
How to make secure access from the Internet to several servers in the local network?
Task: There are several people who need to provide access to several company servers located on the local network. The servers are located at different local addresses. Moreover, ensure that the traffic from them to the company's network is encrypted.
Of course, just for such cases, you can use ssh tunneling:
The problem is that in this case:
1. Users need to issue some kind of limited account on the router. How to limit it correctly so that they don’t crawl on the server and can’t do anything?
2. Users will be able to access the entire local network (not just the desired web server), which is not desirable.
How to solve the problem? IP users from outside are unknown.
Answer the question
In order to leave comments, you need to log in
Options:
1) any vpn solution, from open-source to proprietary
2) attach HTTPS and authorization to the site and simply forward the desired port (443 or any invented, if desired)
Set up port forwarding on your router. For example, port 8022 will lead to the first server, 8122 to the second.
Rule 1 - move all servers to the DMZ, another subnet, another vlan.
set up forwarding subdomains/aliases to a specific natom server/service to the internal network
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question