This is a scenario where a single node VPN would reduce, not increase OP’s security stance. You do have to worry about NK hackers breaching your services because they’re all exposed through the single node VPN server. Same attack surface, less knowledge needed to hit the target with the payload.
Comment on CrowdSec vs Fail2Ban - What to use?
catloaf@lemm.ee 3 weeks agoIt would protect all the services. Instead of having to secure each one, you only expose the VPN server and connect to that. You don’t have to worry about North Korean hackers breaching your services if they’re not exposed at all, only the single VPN service. Less attack surface, less worry.
Quill7513@slrpnk.net 3 weeks ago
JASN_DE@feddit.org 3 weeks ago
And basically useless if you need external users to be able to connect to the services.