VPN - Can I use FTP or other utilities while I have a VPN session open?
Yes, VPN client software does not prevent you from using any software. VPN client software will only encrypt data with a destination of the VPN link. If an FTP session to a nonVPN destination is desired, then the FTP session would proceed as if VPN client software were not there. |
VPN - Can I use my own VPN server for external access to my network?
No. This access would circumvent the security of the networking environment.
|
VPN - Can I use VPN with DSL or cable modem?
Yes, with some special handling by the ISP (Internet Service Provider). The most desirable method would be for the ISP to provide a dedicated public IP number (Internet routable) for the customer and would also need to support Internet Protocol Security (IPSec) through their network. Private IP numbers (Not Internet routable without translation) will work provided the ISP will provide the customer with a static network address translation (NAT) and the necessary port mapping to allow IPSec to function. |
|
VPN - Can I use VPN with my ISP account?
It is possible to use VPN with some ISPs; however, we have found that AOL's dial-up adapter does not work with the current VPN client. |
VPN - Can the VPN account be shared by more than one user?
No. Each user will be required to have their own account. |
VPN - Do I need to purchase additional hardware for a VPN?
No. The customer only needs to install client software on their PC and have the appropriate accounts created by COT. This software has been tested and approved for Windows 95/98, Windows NT, and Windows 2000 workstations. |
VPN - Do I need VPN services if I use dialup services?
Dialup only provides a connection to the KIH network; it does not provide the capability for an encrypted link. If an encrypted link is desired, then VPN services are required. |
VPN - I am behind a non-COT managed firewall. What ports do my firewall adm. need to open?
First you need to subscribe to the VPN Enhanced Service. Then your firewall administrator must open the following ports on your firewall: IP Protocal 50 - for IPSEC; UDP500 - for the initial handshake; UDP10001 - for ESP and NAT Traversal functions. |
VPN - I can't connect to the VPN service. I'm getting an error message unable to resolve IP address
VPN Connection requires Internet access. Go to your Internet Explorer and try to go to several Internet sites, i.e.google.com,yahoo.com, msn.com. If you can't get to any of these sites, you Internect is down and VPN will not work until you fix your access to the Internet. |
VPN - I forgot my password(s) or group id for VPN service, what must I do?
If you forgot your password(s) for Virtual Private Network (VPN), call your organization's Agency Security Contact and have them call the helpdesk at 502-564-7576. Passwords cannot be shared with the Agency Security contact. Passwords can only be given to the account holder. |
VPN - I get an error that states I am unable to login please consult the switch log.
More than likely you are incorrectly entering one of your passwords or usernames. Both your username and group ids and both passwords are case sensitive and must be entered exactly as they were created. Call the helpdesk at 502-564-7576. The switch logs can be viewed to determine what is being done incorrectly. |
VPN - I was notified that I was given access to VPN. I didn't request it. Who did?
Only Agency Security Contacts can request VPN accounts. If you have received notification that you now have access to VPN then check with your Agency Security Contacts to see why they requested VPN service for you. |
VPN - Is VPN the same thing as an Extranet?
No. Most VPNs can be designed to work as an extranet. But not all extranets are VPNs. A VPN can be used as an extranet but a VPN normally has much higher security associated with it. A VPN connection to the interior protected network usually requires the establishment of a tunnel and the encryption of data passed between the users PC and interior resources. The common definition of an extranet is a type of network that gives outside users access to data residing inside a network. Users access the data through a web browser over the Internet and typically need to enter a user name and password before access to the data is granted. The web-based Outlook client is an example of an extranet. |
VPN - What do I need to be able to do VPN?
In order to communicate with the VPN server, each PC has to have the VPN client software installed. This piece of software will be available to the LAN administrator for the agency. It is an easy-to-install program and requires minimal configuration support when installed. |
VPN - What is a Virtual Private Network?
Visit our VPN service offerings. |
VPN - What is the cost of this service?
Visit our VPN service offerings. |
VPN - What types of encryption can be used in VPN applications?
Virtually all of the common encryption technologies can be used in a VPN. Most VPN equipment vendors give the user a choice. Encryption types range from the 40-bit built-in encryption offered by Microsoft under Windows 95 to the more complex encryption technologies like triple-DES. Our network uses triple DES exclusively.) |
VPN - Who can use VPN services?
VPN clients can be Commonwealth employee's, contractors, or special interest groups that have been approved by Agency authorities. |
VPN - Who decides what goes into an agency firewall security policy?
The policy design is a team effort. The firewall administrators meet with representatives of the agency to develop a policy. The firewall administrators will explain some of the common things that are generally secured and then work with the representatives to develop a security policy for the agency. The agency ultimately owns responsibility and authority over the exact security policy that is in place. |
VPN - Who will support VPN service?
COT will maintain the central site VPN server and provide the client software to agency technical contacts for installation. The Agency LAN administrators will be responsible for VPN client software installation and the support of applications used via the VPN service. As stated earlier, installation instructions for Windows 95/98/00 and Windows NT workstations will be provided. |
VPN - Will I need a user account and password for VPN services?
Yes, when signing up for the service, each potential user will be assigned a user account and password. |
VPN - Will VPN cause me any performance issues?
No significant performance issues were noticed during testing. |
VPN -I can't connect to the VPN service. I am getting an error message unable to resolve IP address.
VPN connection requires Internet access. Go to your Internet Explorer and try to go to several Internet sites, i.e.google.com,yahoo.com, msn.com. If you can't get to any of these sites your Internet is down and VPN will not work until you fix your access to the Internet. |
VPN- I forgot my password(s) or group id for VPN service. What should I do?
If you forgot your password(s)for Virtual Private Network (VPN), call your organization's Agency Security Contact and have them call the helpdesk at (502) 564-7576. Passwords cannot be shared with the Agency Security contact. Passwords can only be given to that account number |
VPN-When I login get a message that maximum number of connections have been reached & cannot login.
Call your organization's Agency Security Contact and have them call the helpdesk at 502-564-7576. We will have to clear your connections. |