Should I setup a VPN from inside our network to an outside server?

I have been asked to give some of our employees the ability to use the Microsoft VPN client (Win2000, PPTP) to...

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

access a remote customer's VPN server from inside our corporate network. I thought I had read somewhere that this is not a good idea, and at the moment our firewall is setup to not allow establishing a VPN from inside our network. Are there any precautions I should take before allowing this type of connection, or am I worrying about nothing?

Yes, you should be worried. This is not a standard practice in any secure network environment. No access should be granted through the firewall to connect to an outside vendor. Instead, you must create a separate DMZ outside your private/protected space that will allow access to the other company. Use a machine within your DMZ or another DMZ just for this purpose, terminal service into that device and then VPN.

This will protect your company and allow much greater control over the device in case of malicious code, hack attempts or data coming back from the other company.

Best Web Links: VPN security

Expert Advice: VPNs and split tunneling

White paper: The Secret to Simplified Firewall and VPN Security

For more info on this topic, please visit these SearchSecurity.com resources:

This was last published in September 2003

Dig Deeper on Secure remote access

SearchCloudSecurity

What to know about VPN termination

How to set up a site-to-site VPN to coexist with a DMZ

How to configure firewall ports for webmail system implementation

When should a database application be placed in a DMZ?

Please create a username to comment.

Cloud security risks and the countermeasures you need now

Enhance your cloud threat protection with 5 tools, and more

Privacy-preserving machine learning assuages infosec fears

Evolution of WLAN technology improves data rates, security

Future of wireless communications unifies 5G and Wi-Fi 6

SASE market emerges as the 'wave of the future'

Dell, PwC, Peapod accelerate digital transformation initiatives

4 ways CIOs can drive IT cost savings during the pandemic

Post COVID-19 strategies for CIOs on leading through crisis

Microsoft launches Windows File Recovery tool

Citrix microapps look to ease office reopening

VMware Workspace One unifies reshaped digital workforces

SUSE buys Rancher Labs for Kubernetes expertise

Why enterprises choose multi-cloud environments

Oracle Cloud at Customer adds Dedicated Regions

Executive interview: Toyota’s Melody Ayeli on the significant role of ITAM

Aryaka, 8x8 enhance enterprise communications across managed SD-WAN

Facebook iOS SDK flaw linked to onset of Spotify app outage blighting Apple device users

Related Resources

Dig Deeper on Secure remote access

What to know about VPN termination

How to set up a site-to-site VPN to coexist with a DMZ

How to configure firewall ports for webmail system implementation

When should a database application be placed in a DMZ?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.