+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 17
Wireless Networks Thread, VPN in Technical; I am looking at the possibility of setting up a VPN so teachers can access files from home. Any idea's ...
  1. #1

    sippo's Avatar
    Join Date
    May 2008
    Location
    Swindon, Wiltshire
    Posts
    1,786
    Thank Post
    142
    Thanked 226 Times in 148 Posts
    Rep Power
    161

    VPN

    I am looking at the possibility of setting up a VPN so teachers can access files from home. Any idea's of cost and how easy it is to set up? Its not something I've thought of to be honest.

    Anything to look out for? Any advise?

    Thanks!

  2. #2

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,617
    Thank Post
    747
    Thanked 1,707 Times in 1,520 Posts
    Rep Power
    437

  3. #3

    matt40k's Avatar
    Join Date
    Jun 2008
    Location
    Ipswich
    Posts
    4,485
    Thank Post
    372
    Thanked 657 Times in 537 Posts
    Rep Power
    162
    VPN would mean you would need to encrypt all the laptops (whatever the staff use), I would go for terminal server, Windows 2008 comes with HTTPS support.

  4. #4

    sippo's Avatar
    Join Date
    May 2008
    Location
    Swindon, Wiltshire
    Posts
    1,786
    Thank Post
    142
    Thanked 226 Times in 148 Posts
    Rep Power
    161
    We haven't got 2008. We're still on Server 2003 r2.
    They want to access files, and sims from home. I'm not sure how it all works to be honest.

  5. #5

    matt40k's Avatar
    Join Date
    Jun 2008
    Location
    Ipswich
    Posts
    4,485
    Thank Post
    372
    Thanked 657 Times in 537 Posts
    Rep Power
    162
    Secure Communications, Secure Networking, Secure Application Access, SSL VPN, High Assurance IPSec VPN Encryptor, Hardware Security Modules, HSM, Terminal Services, Windows Remote Access, Public Key Infrastructure, Identity Based Access Control, IBAC

    There is a free version, basically it's the same sort of idea as is built into W2K8, but it's Java based rather then .net.

    Might be worth looking at getting 1 w2k8 server, then setting it up with ts gateway with HTTPS.

    Sorry I can't remember the free version url, I know it's on sourceforge.

    The problem with VPN is that you'll have to support staff home pc etc with office, sims etc, then you've got the whole security thing, where hdd must be encrypted. Personally, go for the "thin client" idea. David Hicks I think might be able to help more, I know he (and someone else) was looking at having SIMS on a terminal server (then remoting into it).
    Last edited by matt40k; 18th March 2009 at 03:53 PM.

  6. #6

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,617
    Thank Post
    747
    Thanked 1,707 Times in 1,520 Posts
    Rep Power
    437
    Why does providing a vpn for external use mean the need to encrypt the laptops?

    Ben

  7. #7

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    18,369
    Thank Post
    525
    Thanked 2,611 Times in 2,019 Posts
    Blog Entries
    24
    Rep Power
    890
    Quote Originally Posted by plexer View Post
    Why does providing a vpn for external use mean the need to encrypt the laptops?

    Ben
    Because having access to files on laptops which are unencrypted is a breach of the data protection rules that we're supposed to be following now.

  8. #8

    Domino's Avatar
    Join Date
    Oct 2006
    Location
    Bromley
    Posts
    4,111
    Thank Post
    217
    Thanked 1,343 Times in 821 Posts
    Blog Entries
    4
    Rep Power
    526
    but if the files were on a drive located in the school that was accessed through the VPN...?

  9. #9

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    18,369
    Thank Post
    525
    Thanked 2,611 Times in 2,019 Posts
    Blog Entries
    24
    Rep Power
    890
    Quote Originally Posted by Domino View Post
    but if the files were on a drive located in the school that was accessed through the VPN...?
    If you just work on that remote drive, then you should be fine, so long as nothing is copied to the local machine.

  10. #10

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,617
    Thank Post
    747
    Thanked 1,707 Times in 1,520 Posts
    Rep Power
    437
    just because you have access via a vpn doesn't mean the laptops have to be encrypted.

    According to the BECTA guidelines laptops containing sensitive information should be encrypted, also there are no deadlines as far as I can see on when encryption should be implemented.

    That will be next I am sure.

    VPN or thin client access allows the same access to info.

    VPN probably requires an additional login process or maybe 2 factor authentication.

    Ben

  11. #11

    matt40k's Avatar
    Join Date
    Jun 2008
    Location
    Ipswich
    Posts
    4,485
    Thank Post
    372
    Thanked 657 Times in 537 Posts
    Rep Power
    162
    Thin client will have zero files other then maybe a few dll.

    VPN, for sims, will have your a number of files around your local machine. Capita won't recommend this.

    Basically look in: My SIMS Documents

    Also, if I run a report, that say, exports all the students details to my C Drive, you've just breached the Data Protection Act if your local hdd isn't encrypted.

  12. Thanks to matt40k from:

    localzuk (18th March 2009)

  13. #12

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    18,369
    Thank Post
    525
    Thanked 2,611 Times in 2,019 Posts
    Blog Entries
    24
    Rep Power
    890
    Quote Originally Posted by plexer View Post
    just because you have access via a vpn doesn't mean the laptops have to be encrypted.

    According to the BECTA guidelines laptops containing sensitive information should be encrypted
    You just contradicted yourself... The majority of files that will be accessed remotely would be data regarding children. Sure, some will be lesson plans and the like but as the other type is likely to be accessed, your laptops should be encrypted if you intend to copy files from a VPN to it.

    But as I said, if you're just opening the files remotely, and not actually copying them across, then that necessity is removed.

  14. #13

    Join Date
    Nov 2007
    Location
    North Yorkshire
    Posts
    104
    Thank Post
    14
    Thanked 6 Times in 3 Posts
    Rep Power
    16
    Hi

    I am in the same boat as you are sippo I believe Sims Capita learning gateway sounds like what we need to protect Sims data... Have a chat with your Sims Manager about this software!!! Plus before 2010 you will need a portal so students and there parents can access schools data from home...

    Hope this helps...

  15. #14
    clarky2k3's Avatar
    Join Date
    Nov 2007
    Location
    Northumberland
    Posts
    321
    Thank Post
    35
    Thanked 49 Times in 40 Posts
    Rep Power
    25
    Adito SSL VPN - We use it here on Ubuntu Server.

  16. #15

    plexer's Avatar
    Join Date
    Dec 2005
    Location
    Norfolk
    Posts
    13,617
    Thank Post
    747
    Thanked 1,707 Times in 1,520 Posts
    Rep Power
    437
    I didn't contradict myself I just kept typing while thinking

    As I said just because you have vpn access doesn't mena you need to encrypt.

    If you copy files to the laptop over the vpn then yes.

    Allthough I'll contradict myself again now because as we all know the moment you turn a computer/laptop off the memory doesn't immediately clear but takes time, this means an attack can be leveraged against the memoery if you have physical access.

    Therefore you could say that becuase it's been opened it's available from the memory.

    This is also an attack vector against truecrypt.

    Ben



SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. VPN
    By ahuxham in forum General Chat
    Replies: 7
    Last Post: 30th August 2008, 05:28 PM
  2. VPN
    By Edu-IT in forum Windows
    Replies: 1
    Last Post: 23rd July 2008, 03:39 PM
  3. VPN and IP Confusion
    By mcowley in forum Windows
    Replies: 16
    Last Post: 3rd February 2008, 11:00 PM
  4. VPN in Vista
    By FN-GM in forum Windows Vista
    Replies: 2
    Last Post: 15th July 2007, 05:54 PM
  5. VPN +DHCP
    By Dos_Box in forum Wireless Networks
    Replies: 7
    Last Post: 30th September 2005, 02:14 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •