Re: vpn split tunnel or no split tunnel

["James R. Pardonek" <pardonjr () PURDUECAL EDU>]

Depending on how it is configured, it is possible for a user to
inadvertently route traffic between the user's ISP and the tunnel.  So
if the user's computer gets hacked, it is possible for a malicious
hacker to gain access to your internal network via the split tunnel.
For that reason, we do not allow split tunneling.  

 

Please let me know if there is anything additional I can assist you with
to ensure the service you received today has been excellent. 

 

James R. Pardonek, CISSP CEH CPT

Assistant Director for Information Security and Assurance

Information Services

Purdue University Calumet

Hammond, Indiana

P: (219)989-2745

 

From: The EDUCAUSE Security Constituent Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Mark Monroe
Sent: Monday, February 07, 2011 1:58 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] vpn split tunnel or no split tunnel

 

We are architecting a new vpn service on campus and some people want
split tunneling and some do not. I am not 100% sure either way. Anyone
have any examples or data that might push me either way?

Mark Monroe    
Information Security Officer
University of Missouri - St. Louis



*** Purdue University Calumet is in the process of changing our domain name from calumet.purdue.edu to purduecal.edu. 
Please update your address books. ***