OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • English Forums »
  • General Discussion »
  • Security question - domain or no domain
« previous next »
  • Print
Pages: [1]

Author Topic: Security question - domain or no domain  (Read 584 times)

NevadaTech

  • Newbie
  • *
  • Posts: 11
  • Karma: 0
    • View Profile
Security question - domain or no domain
« on: March 26, 2023, 05:43:01 pm »
Hello,

There is probably no firm 'real' answer to this question. If there is please let me know. In general, is your router more secure if you do not have an external domain associated with it's public IP? For example is router.walmart.com less secure than only using it's static IP of 12.34.56.78?

In this scenario, it is an OPNsense router with out of the box security enabled. There are IPSEC VPN connections to the box - both tunnel links and OpenVPN temporary connections. No other WAN ports open. I like the idea of setting a DNS name to it. I don't see how it would be less secure.

Logged

schnipp

  • Sr. Member
  • ****
  • Posts: 371
  • Karma: 19
    • View Profile
Re: Security question - domain or no domain
« Reply #1 on: March 26, 2023, 08:03:21 pm »
No, it is not less secure.

The only more theoretical aspect can be that an attacker manipulates the DNS used for establishing the IPsec tunnel to your endpoints. But, this only affects availability and not confidentiality and integrity of exchanged data.
« Last Edit: March 26, 2023, 08:07:30 pm by schnipp »
Logged
OPNsense 24.7.1-amd64
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • English Forums »
  • General Discussion »
  • Security question - domain or no domain
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2