asked on
What kindly remote management service or remote services can I restrict by IP to protect the windows 2016 Server?
Dear Sir
Background:
Windows 2016 Domain Network
3 AD
2 File Servers
1 email Server
We are just cleaned up from the mess created by hacker.
I would like to restrict access to server by non authorised users (Hacker).
I restricted RDP by specified IP.
My idea is to provide an extra layer of security that the hacker needs a specific IP into to use any remote service / remote management service / RDP
My question is what other remote management services or remote service can I restrict by specific IP on window2016 domain network?
(provided that the services are not used by other windows server for normal operations.
Thank you in advance.
Background:
Windows 2016 Domain Network
3 AD
2 File Servers
1 email Server
We are just cleaned up from the mess created by hacker.
I would like to restrict access to server by non authorised users (Hacker).
I restricted RDP by specified IP.
My idea is to provide an extra layer of security that the hacker needs a specific IP into to use any remote service / remote management service / RDP
My question is what other remote management services or remote service can I restrict by specific IP on window2016 domain network?
(provided that the services are not used by other windows server for normal operations.
Thank you in advance.
Windows Server 2016Microsoft Server OSWindows OSWindows 10Azure
Last Comment
Gordon Tin
That's what the firewall is for. Firstly set it at the edge firewall/router. If not possible then use the Windows Firewall.
Don't restrict to IPs, IPs can be spoofed. Use a solution that can distinguish which computer identities are allowed (certificate based or kerberos ticket based). Even the windows internal firewall can do that, see https://techcommunity.microsoft.com/t5/core-infrastructure-and-security/securing-rdp-with-ipsec/ba-p/259108
"what other remote management services or remote service can I restrict by specific IP on window2016 domain network?" - you may use aforelinked procedure on any port/service that your server offers, it does not affect the service itself.
Are you exposing RDP (even with IP restrictions) to the internet? This is a BAD IDEA. If you need remote access via RDP, setup RD Gateway and use two factor authentication.
ASKER
To Kcknife:
What is aforelinked procedure on any port/service that your server offers?
I don't quite get it.
Thank you in advance
What is aforelinked procedure on any port/service that your server offers?
I don't quite get it.
Thank you in advance
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Thanks