Hi everybody,
we have a cluster gateway of 2 nodes, balanced by a LB and exposed to the internet for services requests.
I've noticed that the GW nodes can be accessed via Policy Manager even outside the company LAN or VPN. If I connect with Policy Manager pointing at the public IP of the LB on the secure port 443, I can get the access from anywhere.
This is a security leak and I would like to know if the only way to avoid it is to define a dedicated secure port, not mapped by the LB, to be used only for Policy Manager access. Are there any other solutions to overcome the issue?
Thanks,
------------------------------
Enzo
------------------------------