Re: VPN on user home computers

From: Marlon Brown (marlon_brown@hotmail.com)
Date: 11/07/02 

From: "Marlon Brown" <marlon_brown@hotmail.com>
Date: Thu, 7 Nov 2002 09:38:47 -0800

Karl, first of all, you are the man.
In this case we use Cisco VPN. As far as I know, they don't support split
tunneling.

Thanks much for your input !

"Karl Levinson [x y] mvp" <levinson_k@excite.com> wrote in message
news:eV1z#GohCHA.1544@tkmsftngp09...
>
> "Marlon Brown" <marlon_brown@hotmail.com> wrote in message
> news:#CGI0vnhCHA.1960@tkmsftngp08...
> > My company provides laptop to users, so they can work with VPN from
home.
> >
> > Some users are asking the client VPN itself to setup on their personal
> > desktops at home. That way they are able to connect from their personal
> > desktop machine at home to our corporate network.
> >
> > Do you think that is something usually recommended ? Allow users to
> connect
> > from their home computers ?
> > My concern I will have no way of knowing if Anti-virus, Firewalls are
> setup
> > accordingly on their home machines ?
>
> PS if you didn't already know, be aware that some VPN solutions such as
> Nortel and Microsoft IPsec have an option called something like "split
> tunneling." Split tunneling is a feature that allows you to control
whether
> or not all other network and internet connections on the remote home
> computer are shut off when the VPN connection is established. Doing this
> can help prevent a hacker from compromising a home computer and using that
> computer to hop to the corporate network... however, if the user has her
> home computers networked together, this feature will prevent the computer
> from talking to the other computers on the home network while connected to
> VPN.
>
>

Relevant Pages

  • Re: VPN with Netopia R910, private lan ip
    ... client's network to be able to develop the things I do. ... I'm getting Sql Server Developer ... > worked with Netopia routers before with a dedicated VPN and dynamic IP. ... I wanted to use it to make automatic VPN connections so that ...
    (microsoft.public.backoffice.smallbiz2000)
  • Re: VPN between office and Home
    ... Hard Drive as my second location backup for my SBS2003. ... On the XP box at home, go to Control Panel -> Network Connections. ... That is why I want to get a VPN ternnel instead of client VPN or RWW. ...
    (microsoft.public.windows.server.sbs)
  • Re: [Full-disclosure] Remote Desktop Command Fixation Attacks
    ... This set of steps is redundant in many places, and it's also enormously expensive, since you're using no less than three different expensive bits of networking hardware (AP, PIX, VPN Concentrator), in addition to a bunch of x86 server hardware, windows server licenses, and at least one ISA license. ... Your computers necessarily don't have full access to your network infrastructure when they aren't logged on, so GPOs, software updates, etc can't be applied at the times you want them to be applied. ... Turning on, enabling, and implementing every possible security setting and device you think of is not defence in depth, and will probably only have two effects - your users won't use your wireless network, and you'll burn so much cash you won't have any left to spend on *useful* security measures. ...
    (Full-Disclosure)
  • Re: Windows XP Networking Question (with Linksys Home VPN Router)
    ... You bought one router. ... to share this router in a wireless network? ... you don't need to be thinking of VPN - you can be all on the same ... and the other's set up 'outgoing connections' to connect to it. ...
    (microsoft.public.isa.vpn)
  • RE: VPNs - Firewalls and Security
    ... I'm relatively sure that I can apply an access list to the VPN network ... configured) can only talk to the internal network, ... There must be some way to block / firewall even my VPN connections to ...
    (Security-Basics)