Difference between revisions of "Remote Access & VPN"

Latest revision as of 17:47, 5 February 2024

In the interest of security, Remote Desktop Protocol (RDP) and Secure SHell (SSH) connections made to our resources from outside of the campus network are blocked, with a couple exceptions noted below. Such connections can still be established by being on our VPN. This page is intended to provide information on how to connect to the VPN.

Remote Access Policy

Inbound RDP and SSH access are restricted to all resources.

RDP/ SSH connections will not be blocked if they originate anywhere on campus. Besides the caveats mentioned above, remote access to all servers/workstations will require that a connection be established to our VPN first.

VPN

Our VPN is available to Students, Faculty, and Staff. Some guest accounts are not initially granted VPN access. If such guest access is required, send an email to root@cs.odu.edu and CC the head of the research group you are associated with for confirmation.

Windows, MacOS, and Linux Users

Instructions for connecting to the VPN

Connecting Printers (MacOS)

Below is a guide for setting up connection to printers once connected through a VPN connection.

Instructions for connecting a printer while using MacOS and connected to VPN

FAQ

"After establishing a connection to the GlobalProtect VPN on Windows, the new VPN network shows up as unidentified/unknown. Why?"

The GlobalProtect VPN doesn't assign a default gateway as it isn't needed. Windows determines networks with no default gateway set to be unidentified/unknown by default. This is expected behavior.
https://blogs.technet.microsoft.com/networking/2009/02/20/why-is-my-network-detected-as-unknown-by-windows-vista-or-windows-server-2008/

@@ Line 1: / Line 1: @@
-In efforts to further improve the overall security of the Computer Science Department's computing resources, we will be blocking Remote Desktop(RDP) and SecureShell(SSH) at the edge of our network on the night of January 12th at 11pm. This change is intended to reduce our current attack surface, and limit the effectiveness of brute force attacks levied against our computing resources. In addition to putting these restrictions in place, we will also be migrating our VPN to our newly acquired Palo Alto firewalls. This page is intended to provide information on what can be expected after the remote access restrictions have been put in place as well as details on how to connect to the new VPN.
+In the interest of security, Remote Desktop Protocol (RDP) and Secure SHell (SSH) connections made to our resources from outside of the campus network are blocked, with a couple exceptions noted below. Such connections can still be established by being on our VPN. This page is intended to provide information on how to connect to the VPN.
-== Remote Access Policy Changes ==
+== Remote Access Policy ==
-Inbound RDP and SSH access will be restricted to all resources with the following exceptions:
+Inbound RDP and SSH access are restricted to all resources.
-*These computing resources will still be available without the need for VPN:
-**Our Virtual Computing Lab (vclab.cs.odu.edu)
+RDP/ SSH connections will not be blocked if they originate anywhere on campus.
-**Our departmental Linux machines (linux.cs.odu.edu, atria.cs.odu.edu, sirius.cs.odu.edu)
-*RDP/SSH connections will not be blocked if they are originating anywhere on campus.
 Besides the caveats mentioned above, remote access to all servers/workstations will require that a connection be established to our VPN first.
 == VPN ==
-Our VPN is available to Students, Faculty, and Staff. The only requirement for connecting to the VPN is a valid CS account.
+Our VPN is available to Students, Faculty, and Staff. Some guest accounts are not initially granted VPN access. If such guest access is required, send an email to [mailto:root@cs.odu.edu root@cs.odu.edu] and CC the head of the research group you are associated with for confirmation.
-[[https://systems.cs.odu.edu/images/4/47/Palo-Alto_VPN_connection_rev3.pdf Instructions for connecting to the VPN]]
+'''Windows, MacOS, and Linux Users'''
+[https://systems.cs.odu.edu/images/6/6c/CS_Forticlient_VPN.pdf Instructions for connecting to the VPN]
 ==Connecting Printers (MacOS)==
 Below is a guide for setting up connection to printers once connected through a VPN connection.
-[[https://systems.cs.odu.edu/images/4/47/Mac_Printing.pdf Instructions for connecting a printer while using MacOS and connected to VPN]]
+[https://systems.cs.odu.edu/images/4/47/Mac_Printing.pdf Instructions for connecting a printer while using MacOS and connected to VPN]
 == FAQ ==
 "After establishing a connection to the GlobalProtect VPN on Windows, the new VPN network shows up as unidentified/unknown. Why?"
@@ Line 23: / Line 25: @@
 *https://blogs.technet.microsoft.com/networking/2009/02/20/why-is-my-network-detected-as-unknown-by-windows-vista-or-windows-server-2008/
-== Known GlobalProtect Issue on MacOS ==
+<!--
-There is a known issue with using GlobalProtect 4.1.x on MacOS 10.13.x (High Sierra).
+Out of date information
+== Known GlobalProtect Issue on MacOS 10.13.x (High Sierra)==
+There is a known issue with using GlobalProtect 4.1.x on MacOS.
 === The Issue ===
@@ Line 32: / Line 38: @@
 === The Fix ===
-To fix this issue, follow the steps below:
+To fix this issue, please follow the steps below, or send an email to root@cs.odu.edu.
 ) Uninstall GlobalProtect using the installer
@@ Line 45: / Line 51: @@
 ) Re-install GlobalProtect
+-->

Difference between revisions of "Remote Access & VPN"

Latest revision as of 17:47, 5 February 2024

Contents

Remote Access Policy

VPN

Connecting Printers (MacOS)

FAQ

Navigation menu

Personal tools

Namespaces

Variants

Views

Actions

Search

Navigation

More About Us

Tools