Open Firewall to a dynamic public IP address but not via IP

Question

I have a server firewall set to allow incoming traffic only from specifics IP for security reasons.

I sometimes have to connect to it from outside office and I don't have a static public IP there, but a dynamic one. So writing an email and get it change every time is not an option.

I was thinking if there may be some other "static" infos other than the IP that recognize my device and I can ask to open the firewall on that?

I know I could use DNS, but unfortunately the DNS I have is very used in Italy because it belongs to the Vodafone company and that would open the firewall to too many devices.

Perhaps my Mac Hardware UUID? (F944F643-9611-5A84-9B2B-**********) or any other "fixed" properties?

Anton Danilov · Answer 1 · 2019-06-27T08:22:40.190

2

You have several ways to achieve what you want (from least to more safe):

Just use non-standard port number.
Port knocking method - you send sequence of packets with known properties to open the port for your current ip. If you use the linux on your firewall, you can read this tutorial.
Use VPN.

Choice depends on firewall software features and your skills.

edited Jun 27 '19 at 08:22

answered Jun 27 '19 at 07:43

Anton Danilov

4,874
2
11
20

Wow, great, can you refer me to something about port-knocking? – Mr.Web Jun 27 '19 at 08:10
1

I've added link to the good tutorial for iptables port-knocking into the answer. – Anton Danilov Jun 27 '19 at 08:23

Open Firewall to a dynamic public IP address but not via IP

1 Answers1