Re: Guest Wireless Restrictions

[Brian Helman <bhelman () SALEMSTATE EDU>]

Our guest access is throttle considerably.  Users of it can only access on-campus systems that are accessible from the 
Internet.  We block p2p applications via a Layer 7 firewall as well as other services that aren't considered "business 
necessary".  We are discussing blocking access to our email system and admin/student systems as well (even though those 
ARE available to an Internet user) -- the logic there is that it will keep students and employees who have access to 
the regular network from using Guest.  Using that philosophy, we should probably block Facebook as well.

No registration/login is needed, but we do require Mac's and PC's to have Antivirus installed, running and up to date 
definition files.

-Brian Helman

-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Nardone, 
Mark
Sent: Tuesday, May 08, 2012 2:50 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Guest Wireless Restrictions

Many of us have some form of "Guest Wireless
Access", I am interested in what others are doing
in terms of restricting that access.
Do you:

Require any kind of registration or
authentication?
Restrict the bandwidth, or access to ports and
functionality in any way?
Do you allow P2P from the guest range?


Here at NEU we do not allow access to our
preferred resources or core systems (data centers
ect) from the guest range, but otherwise people
have most functionality. What we have been seeing
over the past year is an up-trend of people using
the guest range to download copyright material.
Our automated system will respond to complaints
from outside entities and notify students they are
in violation of our policies, but we do not have
that ability with the guest network.




Mark T. Nardone, CISSP, MIS

Director of Information Technology Security
Northeastern University 
177:22 Huntington
Boston , MA 02115 
617.373.7901 (desk) 
617.335.5082 (mobile)
617.373.6423 (fax) 
m.nardone () neu edu
Northeastern University's Appropriate Use Policy

"Security as a shared responsibility"

**Northeastern University will never request
details of your password or account by email at
any time.**

New Mass requirements for protecting Personal
Identity Information (Pii) became Law on March 1st
2010. Please take a moment to review our on-line
training material at Blackboard.neu.edu
Information Security Awareness.

This message may contain confidential or sensitive
information and is for the use of the intended 
recipient only.  If it appears you are not the
intended recipient, or if you feel you have
received this message in error, we ask your
cooperation and that you refrain from
disseminating, distributing or copying this
e-mail. We request that you delete this email from
your device and notify the sender.