Just looking for ideas on other's approaches:
Our VPN SSL portal is functioning well.
We encountered an issue the other day when one of our users was apparently trying to connect at one of their client's sites. We're using 10443, which we feel flies well under the radar of most port scanners.
To accommodate this situation, we are considering changing the port. We don't have an additional public IP available for using 443, which is being used for webmail interface.
So, what are y'all using?
Thanks
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
It doesn't matter what you set. Tools like nmap scans all ports. You can improve a security a bit by using geography objects (with IP) to limit who is allowed to initiate the VPN connection.
Thanks. I understand what you are saying, but that was not my question. I don't really care what port I use.
I just happened to choose 10443. On one of his client visits, the LAN admin was apparently blocking that port even on their guest network.
So, all I'm asking what port others may be using....
I'd change management port for non-default and leave tcp/443 for sslvpn
Thanks again. Per original post: 443 used for Outlook web access. Not looking for technical answer, just opinion
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1517 | |
1013 | |
749 | |
443 | |
209 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.