Greetings fellow admins,<div><br></div><div>I'm currently investigating the idea of a "remote KVM" for my servers, to allow our team more direct access when we are not physically on-site. Ideally, it would do the following:</div>
<div><br></div><div>- Require login</div><div>- Log all access (user, time, and IP)</div><div>- Allow (at least) 2 simultaneous connections</div><div>- Allow me to switch between servers after I am connected</div><div>- Support at least 16 servers</div>
<div><br></div><div>I'm torn about putting it behind our firewall, such that I would have to VPN in to get to it, and putting it in a DMZ such that I can get to it without the VPN server being up. My concern is, if the VPN server is down, then I'm stuck (and we are off line until someone can physically arrive on-site.) On the other hand, I don't really want to give unsavory individuals easy access and unlimited time to hack my system. How secure are these things on their own? Can they be made to require certificates, for instance?</div>
<div><br></div><div>Does anyone have a preferred solution for this problem? Are there any gotchas I may be missing? Any advice would be welcome.</div><div><br></div><div>Thanks,</div><div>Charles</div><div><br></div>