AFAIK, it only matters when you apply for a third-party cert. If you're signing your own certs I don't think you need a DNS record for the machine.
I personally prefer the name because if your ISP changes, you don't have to notify 500 people of the new address. YMMV Jason From: David W. McSpadden [mailto:[email protected]] Sent: Wednesday, August 12, 2009 9:30 AM To: NT System Admin Issues Subject: Security or not General question: We are setting up AnyConnect by Cisco. Should I set up an 'A' record to point to the firewall device like vpn.imcu.com or should I just leave it as an IP and train the users to https to xxx.xxx.xxx.xxx??? What would you do? Does it even matter? ------------------------------------------------------------------------------------------ The pages accompanying this email transmission contain information from MJMC, Inc., which is confidential and/or privileged. The information is to be for the use of the individual or entity named on this cover sheet. If you are not the intended recipient, you are hereby notified that any disclosure, dissemination, distribution, or copying of this communication is strictly prohibited. If you received this transmission in error, please immediately notify us by telephone so that we can arrange for the retrieval of the original document. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
