I have a customer with an internet routable ip address straight into the Aruba controller that they use for VIA and RAP access.
This particular client is a credit union and they are concerned about the Aruba PEF and possibility of someone gaining access to their financial network through this connection.
So here come the obvious questions...
- By default what ports will the controller respond to?
- What is the best way to limit or lock down unneeded ports?
In the past I've done this by creating and then assigning a firewall policy in Configuation> Network> Port session settings. Would this be the correct way to do this?
Like I stated earlier, they are financial institution and I want to make sure I had best practices for limiting access in place and all my bases covered .
Any input greatly appreciated.
Thanks,
Mike