Home > IT Answers > Networking > Mandating firewall use for remote VPN users
Help

Question

  Asked: Nov 21 2007   4:29 AM GMT
  Asked by: JimmyIT

Mandating firewall use for remote VPN users


VPN, Firewalls, Remote access policies

Is there a way I can make sure all remote vpn users have the proper firewalls and anti virus software installed? If they are using a home pc what controls do I have besides telling them they need to?

Subscribe to Alerts! Get questions and answers delivered to your Inbox.


E-mail me updates on this question



   SUBSCRIBE

hidden modal window
Help

Answer Wiki (Improve, edit or add to this answer)

IMPROVE THIS ANSWER
View History
 RATE THIS ANSWER
0
Click to Vote:
  •   0
  •  0
Last Answered: Nov 21 2007  4:51 AM GMT  by Wrobinson




You need a remote access policy. The only way to truly enforce it is to provide hardware firewalls, host-based intrustion detection systems, firewalls and anti-virus software as well as the serves to configure them accordingly. Then and only then enabling users for remote access to the corporate network. An alternative would be to make software available for download and installating (pre-configured) and use a state checking/quarantine system to allow or disallow computers from establishing remote access sessions based on policies. This is more expensive and complex but reduces expense and administrative overhead in the long run.
  • AddThis Social Bookmark Button

Browse more Questions and Answers on Networking and Security.

Looking for relevant Networking Whitepapers? Visit the SearchNetworking.com Research Library.


RSS - Discussions Help

Discuss This Answer


You must be logged-in to discuss a question. Log-in/Register

HCream  |   Nov 22 2007  6:57AM GMT

One of the least expensive options is the VPN implementation that comes with Microsoft’s ISA Server 2006.
The ISA Server provides a VPN quarantine feature that utilizes the Network Access Quarantine Control feature of Windows Server 2003 to quarantine a remote access computer until its configuration has been validated by a server-side script. This adds another layer of protection by providing a means to check such things as antivirus definition status and local firewall policy on the remote computer before you allow it access to your internal network resources.