Best Security on WAN to DMZ



  • Hello, I have a webserver and some services running on a DMZ network that I have open to the WAN side. I have HAProxy running to map my DNS to the proper service, all is acceded by port 443.

    So I have the services mapped on the HAProxy and I have HAProxy bound to port 443 on the WAN network.

    I made a pass rule on WAN 443 to allow traffic. Is this secure?

    Rule
    Action: Pass
    Interface: WAN
    Address Family: IPv4
    Protocol: TCP
    Source: <my country="" ip="">Destination: WAN address 443

    How can I harden the security?

    Thank You</my>


Log in to reply