Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 27 subscribers
  • Views 374 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN users using personal computers

Ninjatech1969

Hello All,

Has anyone allowed VPN connection for users using their personal computer? How are you protecting your network? Any way 

to have XG firewalls to not allow access if AV is not installed or AV is out of date.  Also if the OS doesn't have the latest patch. 

Is the XG firewall intelligent enough to know if there is something going on such as cryptolocker? thoughts on this...

Thanks



This thread was automatically locked due to age.
  • 0

    Difficult question. Most likely those Setups are not protected at all. 

    XG could start to scan the Traffic with IPS, but still be aware of the risks - You are plugging in a non scanable PC into your own company network. It is like having a Guest Network in the same broadcast domain like your own company network. 

    It will get messy, People do silly Stuff on their privat PCs. 

     

    One approach would be the HTML5 Portal for very small setups. 

     

    Another approach is Sophos Home for all Privat PCs. Make it mandatory, they install it and after a Screenshot of prove, give them the Installer Guide or something like that. Make take to your Sophos Partner about Sophos Home, there are couple of offers about Sophos Home for privat persons. 

     

    Or the more expensive way is to purchase a Sophos Central License for the Home users and install it, using Heartbeat. 

  • 0

    Hi  

    You can apply scanning and IPS policy on VPN to LAN firewall rules for security purpose and if such traffic travels through that specific rule the XG firewall will scan and take appropriate action as per the configuration but XG firewall can't scan the user system, for that you can use AV/EndPoint protection in the local system.