VPN provider for static ip
Discussion
I use these to get a static ip over a 5G cgnat connection - https://www.aa.net.uk/ No issues.
xtruss said:
I use these to get a static ip over a 5G cgnat connection - https://www.aa.net.uk/ No issues.
Thanks, they are broadband though not 5g., I can't find anything on the AA site about static ip for landlines.D
duff-man said:
Any reason not to VPN them back to your office? (if you have one and your firewall supports it) Would mean you only have to add your office IP into any of the remote services that require it.
Agreed.And even with a reasonable broadband connection and using a firewall instead of the isp’s provided router you can do this very thing which i do.
duff-man said:
Any reason not to VPN them back to your office? (if you have one and your firewall supports it) Would mean you only have to add your office IP into any of the remote services that require it.
We are closing our office next week, so will lose the fireconnection, firewall etc.HantsRat said:
What's the reason for them to all be on the same network if your office is closing?
There is no need for them to be on the same network. We need to access client networks, in the past they have whitelisted the external office ip, we all vpn to the office and therefore all routed out via one ip.No office, no firewall, no single ip.
The only reason I wanted to give them static ip's was to make management easier.
Thanks
D
davidd said:
There is no need for them to be on the same network. We need to access client networks, in the past they have whitelisted the external office ip, we all vpn to the office and therefore all routed out via one ip.
No office, no firewall, no single ip.
The only reason I wanted to give them static ip's was to make management easier.
Thanks
D
That makes sense - In that case I would setup an instance in AWS or Digital Ocean. Install OpenVPN or Wire Guard then issue out logins to your staff. They can then authenticate to the VPN when needing to connect to client networks. You then only need to whitelist the 1 IP which is included in VPS plans with AWS/Digital Ocean. No office, no firewall, no single ip.
The only reason I wanted to give them static ip's was to make management easier.
Thanks
D
Just be sure they disconnect before they start streaming all their netflix content thrugh it and you're wacked with a huge throughput bill.
HantsRat said:
That makes sense - In that case I would setup an instance in AWS or Digital Ocean. Install OpenVPN or Wire Guard then issue out logins to your staff. They can then authenticate to the VPN when needing to connect to client networks. You then only need to whitelist the 1 IP which is included in VPS plans with AWS/Digital Ocean.
Just be sure they disconnect before they start streaming all their netflix content thrugh it and you're wacked with a huge throughput bill.
Ah that is good advice, thanks. We'll see how this works, we'll implement a process whereby the add their ip at the start of a job (via azure) then remove it when they are finished..Just be sure they disconnect before they start streaming all their netflix content thrugh it and you're wacked with a huge throughput bill.
Captain_Morgan said:
Sorry I’m confused, can the users not receive a static ip from there isp and then have multiple IP’s whitelisted for the service?
It seems preferable to running a server & vpn software if only for simplicity.
It seems preferable to running a server & vpn software if only for simplicity.
- the users (my dev team) would all have to change isp, which will be painful.
Captain_Morgan said:
Sorry I’m confused, can the users not receive a static ip from there isp and then have multiple IP’s whitelisted for the service?
It seems preferable to running a server & vpn software if only for simplicity.
Most providers don't allow static IP's unless on business plans.It seems preferable to running a server & vpn software if only for simplicity.
As said Nord VPN will sell you a Dedicated IP for £3.39 a month on top of the VPN package cost:
https://nordvpn.com/features/dedicated-ip/
https://nordvpn.com/features/dedicated-ip/
davidd said:
There is no need for them to be on the same network. We need to access client networks, in the past they have whitelisted the external office ip, we all vpn to the office and therefore all routed out via one ip.
No office, no firewall, no single ip.
The only reason I wanted to give them static ip's was to make management easier.
Thanks
D
will your client be happy about this? We would not let you in with Nord, for example.No office, no firewall, no single ip.
The only reason I wanted to give them static ip's was to make management easier.
Thanks
D
the control objective is that you have your own network, deploy machines professionally, have security controls in place to protect the client.
do you not have a corporate network of some kind with a proper VPN including strong authentication (non-exportable certificates, MFA, etc)?
Gassing Station | Computers, Gadgets & Stuff | Top of Page | What's New | My Stuff