[55340] in North American Network Operators' Group
Re: Level3 routing issues?
daemon@ATHENA.MIT.EDU (alex@yuriev.com)
Mon Jan 27 15:34:08 2003
Date: Mon, 27 Jan 2003 15:33:34 -0500 (EST)
From: alex@yuriev.com
To: nanog@merit.edu
In-Reply-To: <200301272010.h0RKAOS2006620@turing-police.cc.vt.edu>
Errors-To: owner-nanog-outgoing@merit.edu
> > This is not correct. VPN simply extends security policy to a different
> > location. A VPN user must make sure that local security policy prevents
> > other traffic from entering VPN connection.
>
> Given that the head of one of our three-letter-agencies managed to get
> this sort of thing wrong, what makes you think that Joe Middle-Manager
> who's more concerned about fixing a spreadsheet will get it correct?
Because it is not that difficult. A security policy of a little office is
very different from a security policy of a three letter agency. In fact,
fixing a spreadsheet could be mode difficult than implementing a security
policy for an office with 5 computers that are connected to the Internet.
Alex
