06.12.2021, 10:35
(This post was last modified: 06.12.2021, 10:36 by Erwin van der Zwart.)
Please correct me if i'm wrong, but a SSL certificate does not protect you, it just tells you that the source can be trusted. Yes HTTPS has the advantage that your username and password are encrypted during logon, if using HTTP this information could be fetched from the traffic packages so you should not use this for secure logon.
The question is more, do you want everyone to be able to access your controller and use authentication as your "door" or do you want to keep it seperated from the public internet so only authorized users can access it at all.
If you use port forwarding then you are exposed to the public internet and when using VPN you must establish a connection to the VPN before you can reach it at all. In my opinion VPN is the only secure way to solve this question...
The question is more, do you want everyone to be able to access your controller and use authentication as your "door" or do you want to keep it seperated from the public internet so only authorized users can access it at all.
If you use port forwarding then you are exposed to the public internet and when using VPN you must establish a connection to the VPN before you can reach it at all. In my opinion VPN is the only secure way to solve this question...