Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Application on IIS server

AnkitSharma1
Here to help
a month ago
a month ago

Application on IIS server

We have an MX250 and have opened a port to access our internal application on a Windows Server from our side. I know it’s a security concern; how can we further protect ourselves to avoid any security breaches? I need a security expert to provide suggestions

0 Kudos
Subscribe
2 Replies 2
PhilipDAth
Kind of a big deal
Kind of a big deal
a month ago
a month ago

IIS - I would use a WAF.  Examples are CloudFlare, Amazon AWS WAF, etc.

Correction: I wouldn't put it on-premise in the first place, but let's proceed with the assumption it has to stay on-premise.

 

With CloudFlare you don't have to open any ports at all.  They have an agent you can put on the server that connects out to CloudFlare, and then inbound requests come into that.

Subscribe
Brash
Kind of a big deal
Kind of a big deal
4 weeks ago
4 weeks ago

Agreed with @PhilipDAth , don't run web servers behind Meraki MX's with open ports and no other protection.

Either place them behind an NGFW or dedicated appliance with WAF capabilities, or utilize a cloud service such as Cloudflare to filter inbound traffic.

Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.