Should I setup a VPN from inside our network to an outside server?

I have been asked to give some of our employees the ability to use the Microsoft VPN client (Win2000, PPTP) to...

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

access a remote customer's VPN server from inside our corporate network. I thought I had read somewhere that this is not a good idea, and at the moment our firewall is setup to not allow establishing a VPN from inside our network. Are there any precautions I should take before allowing this type of connection, or am I worrying about nothing?

Yes, you should be worried. This is not a standard practice in any secure network environment. No access should be granted through the firewall to connect to an outside vendor. Instead, you must create a separate DMZ outside your private/protected space that will allow access to the other company. Use a machine within your DMZ or another DMZ just for this purpose, terminal service into that device and then VPN.

This will protect your company and allow much greater control over the device in case of malicious code, hack attempts or data coming back from the other company.

For more info on this topic, please visit these SearchSecurity.com resources:

Best Web Links: VPN security

Expert Advice: VPNs and split tunneling

White paper: The Secret to Simplified Firewall and VPN Security

This was last published in September 2003

Dig Deeper on Secure remote access

How to set up a site-to-site VPN to coexist with a DMZ When setting up a site-to-site VPN, where should the VPN endpoint be in the DMZ? Learn more in this expert response.

Branch office gigabit firewalls offer value for high-performance needs Lower-cost UTMs with gigabit firewalls for small branches improve WAN security performance without the expense, space and power requirements of a larger branch or data center appliance. But the investment may not be worthwhile unless branches are using the Internet for more than Web browsing.

How to configure firewall ports for webmail system implementation Network security expert Mike Chapple explains why he always recommends placing any server accessible from the Internet into the DMZ.

When should a database application be placed in a DMZ? Mike Chapple explains the best network location for an important database application. Chapple also reveals the appropriate level of access to grant remote users.

Quiz: Securing Your Network Test yourself. A WhatIs.com tech vocabulary quiz about network security teminology.

Firewall implementation: Perimeter security placement and management For your enterprise firewall implementation, understand where your perimeter security goes, how many you need, what precautions to be aware of and know how to manage and maintain your firewall.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Information Security experts

View all Information Security questions and answers

SearchCloudSecurity

Please create a username to comment.

McAfee launches security tool Mvision Cloud for Containers

How to implement zero-trust cloud security

AWS Access Analyzer aims to limit S3 bucket exposures

Consider these 5 FAQs for network monitoring best practices

Cisco's Silicon One networking chip targets cloud data centers

7 factors to consider in network redundancy design

Transforming operations for successful cloud adoption

IT workforce skews younger, says analysis of US data

Top edge computing trends to watch in 2020

How to shut down and restart a remote computer

Setting up Windows 10 kiosk mode with 4 different methods

Microsoft extends Office 365 benefit to nonprofit volunteers

Evaluate general and niche cloud service use cases

Compare niche cloud services to the hyperscale offerings

Get started with Azure tags

Why Lendlease is embracing digital twin technology

Women in tech still feel there’s a ‘glass ceiling’ in the sector

How software can support public involvement with democracy

Related Resources

Dig Deeper on Secure remote access

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.