Re: Student's Own VPN on Campus

[Nicholas Garigliano <ngarigl8 () NAZ EDU>]

Hi Neal,

> From a high level perspective, allowing a student to run a VPN server that
is available from the Internets provides a direct route through your
firewall to your internal network that you have no control over.  It would
depend on what subnets this VPN server would have access to as to what the
risk would be.  I would first find out the need for the VPN access,
determine if it is warranted and if so, then work to provide that as a
service (there are open source solutions) so I have control over it.  Of
course, if you have ever had to role out and manage a VPN service you are
aware that there is an administrative cost to doing this.

Hope this is helpful.

Nick Garigliano, CISSP, GCIH, GPEN
Network Security Engineer
Enterprise & Network Solutions
Nazareth College
585 389-2109

On Mon, Sep 26, 2016 at 4:19 PM, Fisch, Neal <Neal.Fisch () csuci edu> wrote:

> Good afternoon all,
>
>
>
> I’ve received as request from a student who wishes to utilize their own
> personal VPN on our campus.  My questions to the group are:
>
>
>
> 1.       Do you see any risks to allowing this, and if so what are they?
>
> 2.       Do you see any benefits to allowing this and if so what are they?
>
>
>
> Thank you for your time.
>
>
>
> Neal
>
>
>
> Neal Fisch
>
> Director, Enterprise Services and Security
>
> Information Security Officer
>
> Division of Technology & Communication
>
> California State University Channel Islands
>
> One University Drive, Camarillo CA 93012
>
> Solano Hall – Room 2178
>
>
>
> Email:  neal.fisch () csuci edu
>
> Voice:  805-437-3278 *|* Mobile:  805-443-6529 *|* Fax:  805-437-3377
>
> [image: EXT_IS]