How to set up a secure system to allow only specific clients to access specific services on a server?

security networking accounts vpn encryption

Use a VPN. Assign certificates (OpenVPN) or keys (WireGuard) to people and provide specific IP addresses to people too. Then use your firewall to only allow access to services from specified IP addresses. I would probably use Wireguard for this today.

Related

route ipv4 to ipv6 as mechanism to overcome not owning an ipv4 block for load balancing purposes on premise k8s (none aws/gcp)
Security implications of directly connecting a Windows PC to ISP via Network Adapter with Ethernet cable bypassing the Router
I can't route any traffic no matter what is inbound or outbound on my GCE
Automate post-installation setup
How do authentication servers handle thousands of CPU intensive logins?
How can i open correct ports on windows firewall for apache instead of using all?
postfix SASL authentication failed - Internal authentication error
Why is kubernetes unable to pull from a local registry?
Determine if DNS server is master or slave with DiG
Bind: query (cache) './ANY/IN' denied - is it a DDos attack?
PSU: 20 / 24 pin +4 pin [closed]
Windows 2012 Server, Update error 80072EFE