General discussion


Alternative for opening port on corporate Firewall

By kasparsl ·
I am working in medium organization with around 3000 employees. We are implemented classic security solution: only WEB is allowed through our proxy server, all other ports by default are blocked. All connections go through one FW.
Now if some of employees need connection (different port) to outside (payment programs, programmers, IT consultants, etc) I set statistic local IP and create role in FW. But it is hard to manage, because we have lot of branches with different IP segments and most of users are mobile. When it is possible I try to set IP SEC tunnels, but in more cases it is not possible.
How other companies get around off this issue? Or how they manage it? Is there any other way to handle it?
As I understand alternative can be- create internal sock server and install win sock client on employee???s computers. But technical staff told me that not all programs can work try sock server and this solution not stable.
Thanks in advance.

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Related Discussions

Related Forums