The pandemic conditions are forcing us to change the way we work.
Previously, we had to work from the office, but in this Covid-19 pandemic we must be able to work from home (WFH). Changes in the way we work must automatically be adjusted by the Company through changes in IT systems and office IT infrastructure. If previously, internal applications can only be accessed only from the office, now the access to these applications must be set to be flexible so that it can be accessed from home or from anywhere and at any time, therefore, all work and office tasks can remain active and continue to run.
However, if the access to the application server becomes flexible, there waill be new challenges in terms of security, where the application server can be exposed by other people and can even be infiltrated by irresponsible people.
The IT and infrastructure team must make adjustments or tuning on the network and server so that they can be accessed from anywhere but still guaranteed a secure network.
Some simple steps that can be taken include:
1. Access web applications from the Internet with a specific port
If the application must be accessed from the public, then it is better to use a specific port. For example, if the office web application is accessed using port 80, then we will change it to port 8081. Even though the port scanner will still be visible, at least we have reduced the risk. In addition, make sure to open only the ports that are needed and close the port when it is not in use.
2.Access web applications from the Internet from a specific area or IP address
If the application is specifically intended for employees in Indonesia, we should also set IP geolocation. With IP geolocation, we can allow access only from certain countries that have access to the server/application. Or we can even set a specific IP that is allowed to access the server.
3. VPN to the internal office network
VPN (Virtual Private Network) allows employees to remotely work from the office so that servers and applications remain private in the office's internal network. To access the server/application, employees only need to make a VPN connection on their laptop with the credentials previously provided by IT Network Security. There are various types of VPN, but it is advisable to use a VPN that has IPSEC features so that the communication is end-to-end encrypted. This aims to avoid pranksters who try to snoop and steal data.
Of course, there are many other ways to maintain the security of an office network so that employees can work from home properly. However, the most important thing is that the Internet connection in the office must be ensured that it is stable and secure because a secure network will be useless with bad Internet access.
iForte has the advantage of network stability and security. Thanks to the reliable iForte's infrastructure and support of a Network Maintenance team that works 24/7 to guarantee the best connectivity.
By Bimo Adhi Prabowo, Head of Network Operation, iForte Solusi Infotek