Firewall Wizards mailing list archives

Re: Opinions on VPN?

From: Frederick M Avolio <fred () avolio com>
Date: Mon, 19 Apr 1999 06:57:16 -0400

At 06:26 PM 4/17/99 -0700, Jan B. Koum wrote:

      Just wanted to find out what other people opinion on 'VPN' as a
general idea? IMHO, the person who came up with the VPN idea should be
shot, because in most cased all VPN do is create entry points into your
network (in most cased right past the firewall and some times in the
hear of your network). They also give admins false sence of security:


Maybe you have a limited notion to what a VPN does or can do... maybe you
are not looking at the right products. VPNs *can* and do coexist with
firewalls. I mean, you can have a VPN that effectively *ends* on the
outside interface of a firewall and still allow or require the firewall to
enforce security policies.

Certainly, VPNs are not *sufficient* for security. And VPNs from outside
machine to some random inside machine doesn;t allow the firewall to make
more than source and destination decisions. But encrypted connections are a
requirement for most everyone considering the vulnerabilities and what,
potentially, is at risk.


Fred
Avolio Consulting
16228 Frederick Road, PO Box 609, Lisbon, MD 21765
410-309-6910 (voice)            410-309-6911 (fax)
http://www.avolio.com/

Current thread:

Opinions on VPN? Jan B. Koum (Apr 18)
- Re: Opinions on VPN? Frederick M Avolio (Apr 19)
- Re: Opinions on VPN? Andreas Gunnarsson (Apr 19)
- Re: Opinions on VPN? Jonathan Poole (Apr 20)
- Re: Opinions on VPN? Rick Smith (Apr 20)
- Message not available
  - Re: Opinions on VPN? dreamwvr (Apr 20)
- <Possible follow-ups>
- Re: Opinions on VPN? Ryan Russell (Apr 19)
  - Re: Opinions on VPN? Paul M. Cardon (Apr 20)
- RE: Opinions on VPN? Kyle Starkey (Apr 20)
- RE: Opinions on VPN? Litney, Tom (Apr 20)
  - Re: Opinions on VPN? Philip S Holt, Security Engineer / Network Engineer (Apr 21)
- RE: Opinions on VPN? John McDonald (Apr 20)

(Thread continues...)