I questioned that too. We have a cisco asa but and my understanding could be wrong here, but if I install the VPN client on a home computer, the user starts the vpn client and connects, isn't their home computer now connected to my internal LAN? If their home computer is infected, it could possibly infect computers here at the school? I'm sure there are ways to secure the VPN but I'm working with faculty here and trying to keep it as simple as possible. I'll be reading up on webdav over the next few days. Thanks for all the advice, help support and occasional laugh from this great group throughout the year. Merry Christmas and a happy and prosperous new year to all. Glen.
-----Original Message----- From: Erik Goldoff [mailto:[email protected]] Sent: Tuesday, December 23, 2008 1:13 PM To: NT System Admin Issues Subject: RE: File share "so I CANNOT transmit malware directly from my home network to their network. Well, can't while connected to VPN anyway :)" If it is NOT a state owned (or company owned in another scenario) computer, then there is no way to enforce a particular level of anti-virus, anti-spam, anti-malware protection, and once a VPN connection is made, you've blasted a DIRECT connection to an interior subnet INSIDE the firewall that helps protect against such things I think RDP is at least as secure, if not more so than VPNs for personally owned equipment to connect with. Just my opinion, your mileage may vary Erik Goldoff IT Consultant Systems, Networks, & Security -----Original Message----- From: Bill Monicher [mailto:[email protected]] Sent: Tuesday, December 23, 2008 12:17 PM To: NT System Admin Issues Subject: Re: File share I don't know what VPN system you are using, or have looked at, but we are using a Cisco VPN. Only domain members can connect using it. If you try to install the client on your home PC, then is tries to authenticate the computer agains the domain, which fails. The national network people set up a category for suppliers/contractors that does not do this, but you don't need to. >From what I've seen VPNs provide MORE secure than any other option, not less. Under our setup, when I connect my laptop using VPN, my home network disappears, so I CANNOT transmit malware directly from my home network to their network. Well, can't while connected to VPN anyway :) Unfortunately I don't have a copy of the client available right now, so can't tell you version, but if you are interested, email me off-list --BM On Mon, Dec 22, 2008 at 11:24 AM, Glen Johnson <[email protected]> wrote: > Guess I should have been clearer, non state owned computers cannot > connect to our LAN so no VPN. > Not just security but policy I don't make, just enforce. > Thanks. > Glen. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
