I'm looking for ways to secure network traffic for my company's remote workers who often work from home and may not have reliable ISP speeds. I want to ensure that they are not vulnerable to man-in-the-middle (MITM) attacks from rogue access points while traveling. Is there a solution to protect all their network traffic without relying on a full tunnel VPN on their devices?
4 Answers
While HTTPS is essential, if you're worried about performance issues with a full tunnel VPN, you might consider an always-on cloud firewall solution like Zscaler's ZIA. It offers security without the potential bottlenecks a full tunnel can cause.
Data traffic is still data traffic, and just because you use a split tunnel doesn’t mean ISP speeds will improve. So, balancing security and performance is key—find a solution that gives you peace of mind without slowing everything to a crawl.
It's worth noting that if your users are accessing secure websites (HTTPS), they're already getting a good level of protection against MITM attacks. In fact, most reputable sites have moved to HTTPS, making it difficult for rogue access points to interfere with the traffic. So, if your users stick to secure sites, you might not need a full tunnel VPN after all.
Using public VPNs might lead to untrusted MITM scenarios, so be cautious with those. Instead, look into SASE (Secure Access Service Edge) solutions that provide security without needing a full tunnel.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures