Hi There,
Bit of background for you: -
I have 10 mobile phones that are using a dedicated industry app over the 4G network. They connect to our server and check for any new calls (jobs) for the people that use these devices.
The mobile phones "poll" the server every 5 minutes to check for any new jobs.
The app is password and username protected to ensure that the server software only accepts connections from approved apps.
There is only one port involved and this is NAT'd to the dedicated server for this function.
Now, I would like to secure this port on the UTM so that it only accepts connections from these 10 mobile phones and I was originally hoping I could have done this by MAC address but this won't work. I have also tried using a VPN on the mobile phones but that was a bit erratic and the phone users had to restart the VPN sometimes which is something I don't want them to be doing.
So at the moment, I have put a DYN DDNS client onto each phone and created an "allowed list" of devices that can only get through that port providing that their DNS address matches the agreed list. I have to say it works really well but am wondering if I have over-thought this and done something incredibly silly and not obvious.
Any one think of something better to fix this or have I possibly achieved the best solution ?
This thread was automatically locked due to age.
