 |
|
|
| > |
QUESTION POSED ON: 03 September 2006
I have a Router on my LAN that connects all host PCs to each other. My router has an open port for Internet access, (and there will be an open port for my future remote desktop terminal connections). How exposed is my LAN? Can a port scanner see my router and its open port? Or is it only hosts whom I connect to that can become aware of my IP Address?
|
|
|
To continue reading for free, register below or login
To read more you must become a member of SearchSecurity.com
In general, you should not have any open ports on the front of your router/firewall unless you're hosting a service (e.g. a Web site) on your local network that requires public access. Most small/home office routers come with a default policy that is configured to allow any outbound traffic and deny all inbound traffic. This is the desired policy, and I'd strongly recommend that you stick with it.
You mentioned a future requirement for remote desktop connections. If you do expose a remote management port, you should ensure that it's using a strongly encrypted connection or is tunneled through a virtual private network (VPN). If at all possible, you should also limit access to specific IP addresses, ones from which you expect inbound connections.
|
|
|
|
|
|
|
|
Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and
answer pairs from more than 250 TechTarget industry experts.
|
|
|
|
|
|
|
|
|
|
|
|
