That's basically the idea behind zero trust, isn't it? The idea being that you can't even knock on the TCP port if you're not authenticated