Samba remote access security question?
Hi All,
I'm new to this forum and fairly new to Linux.
I've used Fedora and CentOS which are Red Hat based and I've configured different things such as securing an apache web server using HTTPS and configuring SAMBA.
I want to secure my samba server for remote access.
I have a Windows 2008 server as my VPN server which uses L2TP/IPSec for VPN security. Should I allow users to access my samba shares by using VPN or should I use a SSH tunnel?
At the moment I only want Authenticated users to connect to my VPN and enroll certificates etc but if I have friends who need to access my samba share I want them to without connecting to my whole network.
I would also like to mention on my samba server I have a web server and I'll secure it using HTTPS, As another option should I link my samba share to my web server and let the users access my samba share using HTTPS?
What I'm thinking of is allowing the authenticated users to access my network using VPN and they can mount the samba share and or connect to the samba share using HTTPS on my web server. As well as allowing other users access my samba server via SSH which won't give them access to my entire network.
So what would you recommend? I'm sorry if there is some confusion If you have any questions or feedback please let me know.
|