|
1. A system for opening connections in a gateway of a cloud based network for client devices connected via two different network links to the gateway and to a Software Defined Perimeter (SDP) controller, comprising: an SDP controller of at least one cloud based network configured to: receive, by the SDP controller, at least one connection request from at least one client device to connect to a gateway of the at least one cloud based network, the at least one client device is connected to the SDP controller via a first network link using a first Internet Protocol (IP) address and to the gateway via a second network link using a second IP address; generate, by the SDP controller, at least one one-time Single Packet Authentication (SPA) key for the at least one client device after authenticated, the at least one one-time SPA key having a predefined expiration time; and store, by the SDP controller, the at least one one-time SPA key in at least one access keys repository accessible to the gateway; wherein the gateway is configured to retrieve the at least one one-time SPA key from the at least one access keys repository and open at least one connection for the at least one client device via the second network link based on validation of at least one one-time SPA key received from the at least one client device compared to the retrieved at least one one-time SPA key; wherein the at least one one-time SPA key is transmitted by the SDP controller to the at least one client device via the first network link.
|
