Hello all,
Networking certainly isn't my forte and I've only really been handling our UTM sporadically for 2 years, so please bear with me. I did not install the UTM nor was I the primary admin, but I want to make sure that we're decently secure.
We have 2 external facing servers (an ADFS and a CRM) as seen here:
Should this be the only rule needed to protect them or should they really be in WAF or have a separate network range (like internal/VPN users only). The CRM is used primarily by our Sales and Finance people whom would be on business issued devices. The ADFS server, is used by the CRM server, another remote office UTM via UTM VPN to UTM VPN and is also host to an external data gateway for some MSFT/Azure services. I guess it is more the "Any" to "Any" rules that have me nervous.
Secondly, I see this rule right under the first two:
and was wondering where it was generated. It mentions SSL VPN, but on the destination end, I'm not seeing all our RED devices / Remote office networks and to me at least, these should be included.
Any insight or advice you can provide this old newbie would be appreciated!
This thread was automatically locked due to age.