At a basic level, you can start protecting and policing access to your VPN by making sure the software stays up to date, making sure you’re above any required patches and any zero days that may have existed. removed from that VPN. And, of course, making sure you have password strength policies in place with specific recommendations to create a more secure one.
VPN security: beyond the basics
Once you’re up-to-date and hooked, there’s a lot more to do to keep VPN access secure and the network secure. Start by denying IP connections and authentication from any network, Internet asset, or software that makes the connection anonymous. You want to make sure you can track and log in to specific addresses.
Make sure you include in your employee policies and guidelines a list of allowed connections on your network — no user should use services like TOR (Onion Router) to gain access to your company’s network. Set account lockout policies and an appropriate password policy so that long and strong passwords are not only encouraged but mandatory.
Source link