Re: VPN policies.

[Philip Webster <p.webster () QUT EDU AU>]

G'day Matt,

Matthew Gracie wrote on 04/21/2007 03:46 AM:
> Like most institutions, I'm sure, we're getting more and more requests
> from people who want access to on-campus resources from off-campus. Our
> VPN concentrator is more than up to the task, but right now, we're
> discussing the best set of policies to allow people access to work from
> home without compromising data.
>
> How are people handling this? Are users accessing VPNs with their
> personally owned machines at your institution? Are you mandating laptops
> for users who work from home? An entirely different computer that stays
> at the employee's house? Who pays for the Internet connection? What
> about other hardware (routers, APs, etc.) that they need? Is IT
> supplying computers for off-campus use, or is it the job of the department?

We don't provide equipment, just a VPN client.  Some staff have laptops which
they take home, others use their home PCs.  We've also placed an IPS in
between the VPN concentrator and the rest of the network, so this helps to
mitigate the risk of (potentially) poorly maintained remote hosts.

Cheers
Phil

--

Philip Webster
IT Security Engineer                  Ph: +61 7 3138 9537
Information Technology Services       Fx: +61 7 3138 2921
Queensland University of Technology   Mb:  0411 653  313  (QUT: #6 6035)

PGP Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x393FF3E3
Fingerprint: 0CD0 640F 35A6 A1C6 ACE3  E107 4F6C AF1A 393F F3E3