DNS for VPN
Hi, we have a few web servers behind a WG M300 in a data centre, no users, we have sNATs for the servers web https set on the M300 and DNS in the cloud. Externally thats fine, anyone can access the apps via https. We dont have internal dns servers, all servers use Google DNS.
The developers use WG SSL VPN to login to the local LAN and connect to the servers for maintenance via RDP (split tunnel), if on the server they run the site URL the servers host file resolves to its LAN IP.
Some want to VPN and run URLs internally whilst not on the servers RDP, so that means their PC needs a host file set to LANIP then disconnect SSLVPN run URL again and they have to reset to not using host file as the IP is wrong.
so can I add trusted / any optional or SSL Users goup on the "HTTPs sNAT incoing rule for the public IP", so they can SSL VPN in and use the URL without needing to set host files?
can you add trusted in that way, is it secure?
seems counter intuitive for some reason.
eg https packet filter > 126.96.36.199 sNAT to 192.168.99.100
from any external to snat - then add any trusted / optional as well ?