National Security Agency and Cybersecurity and Infrastructure Security Agency offer guidance on selecting and strengthening remote access VPNs. The advice is aimed at leaders in the Department of Defense, National Security Systems and the Defense Industrial Base. Remote-access VPN servers allow off-site users to tunnel into protected networks, which makes these entry points vulnerable to exploitation. The agencies recommend disabling non-VPN-related functionalities and disabling features that are likely to have vulnerabilities. The NSA-CISA information sheet advises that leaders pick standards-based VPNs from vendors who remediate vulnerabilities and follow best practices.”]
Source: https://www.cuinfosecurity.com/nsa-cisa-release-vpn-security-guidance-a-17640