Remote User Vunerability

Posted on 2005-03-23
Medium Priority
Last Modified: 2013-11-16

I have 2 remote users at static locations connecting to our network via vpn.  The remote vpn clients are set up in to establish a connection automatically as soon as the remote user boots.  I have SUS push patches out to the clients and virus signatures every time the client connects.

My concern lies within those remote users.  They are computer illiterate to say the least and am always wondering if one of them is going to contract a virus via email, and have it propagate to our network.

We have a Watchguard firewall with vpn which the remote users connect through.  No firewalls on the remote user sites.

One client is running Windows 2000 Professional, the other is running Windows 98.

Are there any other obvious precautions I should take to protect my network from a virus getting through the vpn tunnel ( other than upgrading the Windows 98 client)?

any suggestions appreciated

Question by:gkendler
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

Accepted Solution

TXBANDT earned 500 total points
ID: 13613813
We have the exact same concern, were using a product called Symantec Anti-Virus for Remote Users.

This will allow you to configure your remote PC prior to logging onto your network to verify that they have the most current Anti-Virus Definition files as well as scheduling a virus scan....

Hope this helps.
LVL 25

Expert Comment

ID: 13613867
we also have the same concern and we require the VPN users to have a software firewall installed on their machines in addtion to up to date virus protection.
LVL 27

Expert Comment

ID: 13613974
There are a number of professional vpn products (such as Nortel Contivity, and other vpn solutions) which are configurable to check the client to make sure they have version X of the firewall engine, dat files, they're running whatever firewall, they have what ever patch you want, etc. etc.  This is all before they connect to VPN.  If they meet all the criteria you specify, they're allowed to connect.  If it's an SSL vpn, instead of their normal page, they can be redirected to a page where they can download the appropriate files, upgrades, patches, etc.

Featured Post

Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
This article will show how Aten was able to supply easy management and control for Artear's video walls and wide range display configurations of their newsroom.
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses
Course of the Month14 days, 21 hours left to enroll

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question