s_sykes
asked on
Sonicwall point to point VPN security
I'm interested in implementing a hosted call center solution and the vendor I like wants me to setup a point to point VPN connection from my location to theirs to make the system work and pass VOIP traffic. I'm concerned that this will open my network up to them as if I have no firewall at all. It seems like this would be a big security risk for my network.
Am I wrong on this? Is there a way to secure the point to point connection and not leave my network totally exposed to someone I don't really know? Is there a way to set this up securely?
I have a Sonicwall TZ190 with the Enhanced OS. Thanks!
Am I wrong on this? Is there a way to secure the point to point connection and not leave my network totally exposed to someone I don't really know? Is there a way to set this up securely?
I have a Sonicwall TZ190 with the Enhanced OS. Thanks!
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
If you need the apps then yeah you may look more toward ports rather than service. Ports being open are just easier to exploit.
The vpn tunnel is it's own area on a sonicwall. So just like there are routes and firewall rules from LAN to wan there are the same from VPN to wan and VPN to LAN. So you can limit what ips an services and everything.
THat is what I thought Aaron, just never really worked with the Sonicwall as a whole.
So if you can get the exact services they are running like HTTP or HTTPS and then the VOIP you may be able to limit it specifically to the needed services if they can truly give you all that information as some may be some odd app that requires ports rather than a generic service.
So if you can get the exact services they are running like HTTP or HTTPS and then the VOIP you may be able to limit it specifically to the needed services if they can truly give you all that information as some may be some odd app that requires ports rather than a generic service.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks!
ASKER