Hi, I occasionally have a need for VPNing into my home network when away. I use the SSL VPN with a dial-in user and the DrayVPN app on my Ipad to make the connection.
Presently I enable 443 only when I eppect to need to use it. So most of the time it stays closed. I have a stong password enabled on the dial in user. The user connects to LAN1 where my hosts and their data stores are located. None of my hosts have 443 enabled. The 2765 is kept up to date with patches, particularly after all the vulnerabilities found in 2025!
Does anyone have any suggestions what else I could do? I run a segmented network with firewall rules preventing LAN2, LAN3 and LAN4 from accessing hosts on LAN1. One thought I had was to put the host I usually need access to on LAN4 which is currently unused. But that is also a faff and I am not sure it gives me much extra protection. Would I be better off using a different protocol? The app supports IPsec IKE2 EasyVPN. IPsec would be way OTT for a home user!. I don't have much sense of how secure this technology is, which is why I have been strictly limiting the times when 443 is exposted on the internet
