Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1115
Views
0
Helpful
4
Replies

VPN -vs- RDP - Security aspects

bberry
Level 1
Level 1

‎03-06-2020 09:22 AM

Hello,

 

With discussions on preparations for the Corona virus and possibly more people working from home the discussions at my office have turned to users connecting back to the network. This would concern mostly the non-normal remote access employee accessing the network. Normally we use VPN for a corporate vetted asset as we are sure it has things like updated anti-virus. We sometimes use RDP for users that need to connect but do not have a dedicated corporate asset. The conversation turned to which is more secure? With the VPN solution the is on the network. This means that any virus, trojan, nasty, etc. that my be on the users device and the device has access to whatever is in the access-list for that profile. In the case of RDP it is just a window to a server and the user works in that window and nothing from the remote device can cross into that window. Items and documents can be transferred but would be more through a cut and past or maybe a copy as opposed to a straight open connection such as VPN. At least that is the stance of the RDP camp.

 

Since I am not a security expert I figured to ask the community and see what are the thoughts. There are possible logistic questions such as getting the VPN client onto a remote device that are not there with using windows built in RDP. But logistic questions are separate from the security side of things. I have started doing the research to see what I can find and figured to ask here as part of that. White papers? Existing research?

 

Thanks for the info in advance.

Labels:
0 Helpful
4 Replies 4

balaji.bandi
Hall of Fame
Hall of Fame

‎03-06-2020 09:38 AM

High level, i would suggest to use VPN connection it is secure, rather Open your enviroment RDP to Internet world.(big risk)

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Cristian Matei
VIP Alumni
VIP Alumni

‎03-06-2020 09:51 AM

Hi,

   

    What do you think is more secure:

            - leave RDP through the Internet directly

            - tunnel RDP through an secure VPN (IPsec or SSL tunnel)

 

Where you can deploy VPN clients, do it and filter their access by VPN policies. Where you can't deploy VPN Clients, use clientless SSL VPN and publish RDP into web portal.

 

Regards,

Cristian Matei.

0 Helpful

bberry
Level 1
Level 1
In response to Cristian Matei

‎03-06-2020 12:23 PM

All management see is the fact that the device is "on the network" through VPN. Working to justify that VPN is actually better.


0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-07-2020 03:01 AM

Why not combine the two into an even more secure setup?

Put an RDP server (or servers) into a DMZ and require users to access it via VPN and the VPN only allows access to the RDP server(s). Make sure the servers have antimalware and DNS security like AMP for Endpoints and Umbrella.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents